[Oisf-users] realtime ssl/tls decryption
Eric Leblond
eric at regit.org
Mon Jul 30 09:38:32 UTC 2012
Hello,
Le lundi 30 juillet 2012 à 13:20 +0400, kay a écrit :
> I have another odd question. I'm not familiar to encryption stuff, but
> is it possible to configure suricata with private SSL/TLS key and
> decrypt traffic?
No this is currently not possible. I don't think this is on the roadmap.
> I can use nginx for that, but nginx's packets will
> have local source IP but not real ones.
>
> Maybe I can use special software which can decrypt/encrypt SSL traffic
> in realtime and keep original source IPs.
This seems the way to go.
BR,
>
> Thanks in advance.
> _______________________________________________
> Oisf-users mailing list
> Oisf-users at openinfosecfoundation.org
> http://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
--
Eric Leblond
Blog: http://home.regit.org/ - Portfolio: http://regit.500px.com/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20120730/bca49fce/attachment.sig>
More information about the Oisf-users
mailing list