On Mon, Apr 09, 2007 at 01:00:32PM -0400, Mark Roggenkamp wrote: > Also, if the https session isn't using client auth then you probably only > need the private key of the WebSeal host.
Even if the https-connection IS using a client-certificate, the private key of the client-certificate is only used for authentication and is not taking part in the encryption of the session. Only the private key of the server-certificate is used to generate the session-keys :) Cheers, Sake _______________________________________________ Wireshark-users mailing list Wireshark-users@wireshark.org http://www.wireshark.org/mailman/listinfo/wireshark-users
