WebApp Sec: Re: Security tool for monitoring HTTPS traffic?

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

WebApp Sec mailing list archives

Re: Security tool for monitoring HTTPS traffic?

From: Gary Flynn <flynngn () jmu edu>
Date: Sat, 28 Feb 2004 09:56:24 -0500

lists AT dawes DOT za DOT net wrote:

The organisation is providing a service on their web server, andconsequently have a need/right to see the data in clear. Inparticular, they may wish to do multiple things with the data, such asperforming IDS, tracking users, etc, apart from providing the service.


Very good point. NIDS/NIDP, deep inspection firewalls,
network based content management and rate limiting will all
go the way of the dodo as applications increasingly all start looking
like HTTPS unless the encryption border is in the network instead
of each individual host.

By Date By Thread

Current thread:

RE: Security tool for monitoring HTTPS traffic?, (continued)
- RE: Security tool for monitoring HTTPS traffic? Satish Chandra Prasad (Feb 26)
- RE: Security tool for monitoring HTTPS traffic? John Floyd (Feb 26)
  - Re: Security tool for monitoring HTTPS traffic? Imre Kertesz (Feb 26)
    - Re: Security tool for monitoring HTTPS traffic? lists AT dawes DOT za DOT net (Feb 28)
    - Re: Security tool for monitoring HTTPS traffic? Gary Flynn (Feb 28)
- RE: Security tool for monitoring HTTPS traffic? najeeb . hatami (Feb 28)
- RE: Security tool for monitoring HTTPS traffic? Amichai Shulman (Mar 07)
- RE: Security tool for monitoring HTTPS traffic? Yoram Zahavi (Mar 10)
  - Re: Security tool for monitoring HTTPS traffic? Romain Vergniol (Mar 10)
- RE: Security tool for monitoring HTTPS traffic? David Wong (Mar 10)