-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 05/28/2010 07:13 AM, Richard L. Barnes wrote: > I've definitely done it with IPsec/ESP using wireshark, not sure if it > does [D]TLS as well.
I know that it works fine for TLS, it's also possible to enter a key for DTLS, but I never tried it. > --Richard > > > On May 28, 2010, at 10:09 AM, Eric Rescorla wrote: > >> Marc knows this. He was being sarcastic. >> >> FWIW, you don't need to be a MITM. You can passively decode D/TLS if you >> have the server key. ssldump will do this, as, I believe will wireshark. >> >> -Ekr >> >> >> On Fri, May 28, 2010 at 5:49 AM, Michael Chen >> <[email protected]> wrote: >>> Marc, >>> >>> Yes, you need to read the draft and create the dissector bit-by-bit. >>> It will >>> be a great contribution to the community if you can make it available >>> to the >>> group. Keep in mind that Wireshark will have to deal with D/TLS as >>> man-in-the-middle. Good luck. >>> >>> Thanks >>> >>> --Michael >>> >>> Marc Petit-Huguenin wrote: >>>> > On 05/27/2010 12:04 PM, jc wrote: > >>>>>> >>>>>> Hi, >>>>>> You don't need a working implementation to create a wireshark >>>>>> dissector >>>>>> for RELOAD. The PDU's are defined in draft. >>>>>> > > You mean that I have to actually read the specification to implement > RELOAD? I > hope there is some nice graphics and examples of PDU in it. > > >>>>>> >>>>>> Julian >>>>>> >>>>>> On May 27, 2010, at 6:09 AM, Marc Petit-Huguenin wrote: >>>>>> >>>>>> Hi, >>>>>> >>>>>> We plan to work on an implementation of RELOAD but we want first to >>>>>> spend >>>>>> some >>>>>> time sharpening our axe by implementing a Wireshark dissector for this >>>>>> protocol. >>>>>> Is there someone already working on something similar? Also is there >>>>>> existing >>>>>> RELOAD implementers willing to test the dissector with their >>>>>> implementation? >>>>>> >>>>>> Thanks. >>>>>> >>>>>> > > 159cc63082bcb0fe4ac273ff84e7db274b6390f4 > - -- Marc Petit-Huguenin Personal email: [email protected] Professional email: [email protected] Blog: http://blog.marc.petit-huguenin.org -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iEYEARECAAYFAkv/230ACgkQ9RoMZyVa61eVcgCZAU5dMZPoXaamuBtAnHVXmHwK 1m4AmQGI2MvzG/Xxw3Q83wYUkuvMV9By =91Qr -----END PGP SIGNATURE----- _______________________________________________ P2PSIP mailing list [email protected] https://www.ietf.org/mailman/listinfo/p2psip
