Wireshark

  • Riverbed Technology
  • WinPcap
the world's foremost network protocol analyzer
  • Wireshark
    • About
    • Download
    • Blog
  • Get Help
    • Ask a Question
    • FAQs
    • Documentation
    • Mailing Lists
    • Online Tools
    • Wiki
    • Bug Tracker
  • Develop
    • Get Involved
    • Developer's Guide
    • Browse the Code
    • Latest Builds

Wireshark-users: Re: [Wireshark-users] sftp traffic

Date Index Thread Index Other Months All Mailing Lists
Date Prev Date Next Thread Prev Thread Next


From: Sake Blok <sake@xxxxxxxxxx>
Date: Tue, 9 Sep 2008 18:33:57 +0200

On Tue, Sep 09, 2008 at 04:24:42PM +0200, Riccardo Roasio wrote:
> 
> there is a  way to sniff and decrypt sftp traffic having the server 
> private key?

By sftp you mean "ftp over ssh" or "SSH file transfer protocol"? In
both cases the encryption is done by the SSH protocol. AFAIK there is
no support yet for decryption SSH traffic, so that means that there
is no support for decryption of sftp... yet (it will be there when
someone finds the time to develop this functionality).

Cheers,
    Sake
  • References:
    • [Wireshark-users] sftp traffic
      • From: Riccardo Roasio
  • Prev by Date: Re: [Wireshark-users] tshark and export as PDML
  • Next by Date: Re: [Wireshark-users] TCP Window Sizes
  • Previous by thread: [Wireshark-users] sftp traffic
  • Next by thread: [Wireshark-users] Decoding ESP packets from Cisco Pix
  • Index(es):
    • Date
    • Thread

Wireshark and the "fin" logo are registered trademarks of the Wireshark Foundation