Hi Stephen,

Thanks for mentioning this article, I found them before posting to the list.

It won't work, because I'm capture traffic between an iOS device (not 
jailbroken) and a Linux server, there's no such thing as SSLKEYLOGFILE to use 
here.

Any suggestions?

On Monday, 18 December 2023 at 12:32 AM, Wall, Stephen 
<stephen.w...@redcom.com> wrote:

> Read this web page for a good summary on decrypting with wireshark.
>
> https://www.packetsafari.com/blog/2022/10/07/wireshark-decryption/
>
> Basically, if the captured pcap file uses RSA handshake, you can decrypt it. 
> If is uses ephemeral Diffie-Hellman, you can’t, you need to have also 
> captured the ephemeral keys via a separate mechanism while the handshake is 
> taking place. RSA is very uncommon these days as it’s considered less secure.
___________________________________________________________________________
Sent via:    Wireshark-users mailing list <wireshark-users@wireshark.org>
Archives:    https://www.wireshark.org/lists/wireshark-users
Unsubscribe: https://www.wireshark.org/mailman/options/wireshark-users
             mailto:wireshark-users-requ...@wireshark.org?subject=unsubscribe

Reply via email to