Wireshark · Wireshark-dev: Re: [Wireshark-dev] Possible change to packet-ssl.c?

Wireshark-dev: Re: [Wireshark-dev] Possible change to packet-ssl.c?

From: Peter Wu <lekensteyn@xxxxxxxxx>

Date: Thu, 10 Apr 2014 10:17:57 +0200

On Wednesday 09 April 2014 16:49:43 Guy Harris wrote:
> Why is that treated as a "this is encrypted" indication rather than a
> "somebody's trying to extract whatever's in the server's memory after the
> request payload" indication?

After the handshake, the record layer is encrypted, including heartbeats.

References:
- [Wireshark-dev] Possible change to packet-ssl.c?
  - From: Guy Harris

Prev by Date: Re: [Wireshark-dev] Possible change to packet-ssl.c?
Next by Date: Re: [Wireshark-dev] How to print out string encoded data that contains nul characters?
Previous by thread: Re: [Wireshark-dev] Possible change to packet-ssl.c?
Next by thread: Re: [Wireshark-dev] How to print out string encoded data that contains nul characters?
Index(es):
- Date
- Thread