| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <BANLkTikEZjXVQJATDuPhARbK0HJ-A5TziA@mail.gmail.com> Date: Tue, 28 Jun 2011 20:24:39 -0700 From: coderman <coderman@...il.com> To: Adam Behnke <adam@...osecinstitute.com> Cc: full-disclosure@...ts.grok.org.uk Subject: Re: Decrypting SSL for Network Monitoring On Tue, Jun 28, 2011 at 9:09 AM, Adam Behnke <adam@...osecinstitute.com> wrote: > InfoSec Institute resources author Alec Waters gives you step by step > instructions on how to decrypt SSL for network monitoring: >... > Your thoughts? using the ssl observatory to pre-generate useful certs and a hardware security module to offload the RSA/DSA handshakes coupled to an i7 with AES-NI for payload transport is even better. like the sugar frosting on top of these crunchy flakes that are part of your nutritional breakfast! YMMV. something tells me *this will be a hot topic this summer, either with your complicit or exploitive support... :o [ where "this" == SSL MITM FTW. where "complicit" == ca-root-on-demand-by-policy, where "exploitive" == ca-root-on-my-demand-by-because-i-said-so, where explanations == getting tedious... ] _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists