On Thu, Feb 21, 2008 at 04:19:55PM +0530, vishal arya wrote: > Did everything by the book ,still tshark/wireshark fail to show may > contents on the payload data. > then i did some gooleing to find intresting stuff about ephemeral keys > cannot be decrypted. > please let me know if TLS_DHE_RSA_WITH_AES_256_CBC_SHA ( AES 256 bit > Encryption ) can be decrypted using wireshark/tshark.
Unfortunately by the nature of the Diffie Hellman (DH) key exchange it is not possible to decode any cipher that uses DH to setup the keys. So the cipher you are using can not be decrypted by Wireshark (the _DHE_ in the cipher indicates a DH key exchange). If you are able to restrict your cipherlist, you can force ssl to use a cipher that *can* be decrypted by Wireshark. Hope this helps, Cheers, Sake _______________________________________________ Wireshark-users mailing list Wireshark-users@wireshark.org http://www.wireshark.org/mailman/listinfo/wireshark-users