[Oisf-users] realtime ssl/tls decryption

Eric Leblond eric at regit.org
Mon Jul 30 09:38:32 UTC 2012


Le lundi 30 juillet 2012 à 13:20 +0400, kay a écrit :
> I have another odd question. I'm not familiar to encryption stuff, but
> is it possible to configure suricata with private SSL/TLS key and
> decrypt traffic?

No this is currently not possible. I don't think this is on the roadmap.

>  I can use nginx for that, but nginx's packets will
> have local source IP but not real ones.
> Maybe I can use special software which can decrypt/encrypt SSL traffic
> in realtime and keep original source IPs.

This seems the way to go.


> Thanks in advance.
> _______________________________________________
> Oisf-users mailing list
> Oisf-users at openinfosecfoundation.org
> http://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users

Eric Leblond 
Blog: http://home.regit.org/ - Portfolio: http://regit.500px.com/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20120730/bca49fce/attachment.sig>

More information about the Oisf-users mailing list