[Snort-users] snorting SSL/TLS traffic?

Todd Holloway todd at ...4574...
Fri Dec 13 15:39:02 EST 2002

I've been playing with "ssldump" today and I've gotten it
so that I can see (when giving it the proper private key) I can decrypt
some traffic (how much I'm still not sure...but more than w/o the key).

Is there a way I can get snort "see" the network the same way?

Is somebody working on this...most of the traffic to our site is "https".


[It] contains "vegetable stabilizer" which sounds ominous.  How unstable are vegetables?
								Jeff Zahn

More information about the Snort-users mailing list