Marsh Ray and Steve Dispensa have an excellent writeup of the recently-discovered renegotiation bug in SSL and TLS. It really is excellent, too. I’m not just saying so because they provide a bunch of sample captures showing renegotiation in action or because Wireshark is prominently featured in their discussion.
In related news, the secure web is no longer secure and civilization will soon collapse.
I could not have done it without Wireshark.
Re: “In related news, the secure web is no longer secure and civilization will soon collapse.”
Please note that our research yielded little in support of that theory about civilization!
I just wanted to say kudos to Marsh and Steve for finding this vulnerability. Now I have to go figure out a workaround for a few 1000 servers until a patch is released. 😉
And I’d like to point out the obvious statement: Wireshark is awesome. I used to use Ethereal and pcap but switched over to the shark. Keep up the good work guys.