I hear even with ssl encryption you can be packet sniffed. Anyone who actually knows what they're talking about have a clue if this is true?
Poster
BT Rep: +1
I hear even with ssl encryption you can be packet sniffed. Anyone who actually knows what they're talking about have a clue if this is true?
Last edited by TinkerBell; 05-16-2009 at 04:10 AM.
I don't mean to troll but who exactly are you referring to when you say packet sniffed? Your ISP? or someone within your LAN?
c0V3r3Ð iN Ba57ArÐ
BT Rep: +23
If u want a yes or no answer then yes,you can be sniffed.a nice prog. called wireshack easily does that but without the servers private key(which you obviously dont have),its impossible to decrypt the raw data into actual usable text.unless whoever told you it can be decrypted knows something,ssl imo is more than secure.
Last edited by Juscallmesez; 05-16-2009 at 11:04 AM.
Poster
BT Rep: +7
Assuming the server's SSL certificate is valid, properly signed by a certificate authority that you trust, and the chosen encryption algorithm is strong enough, it is unfeasible that someone will be able to decrypt the communication between you and the server. If you'll ever find a way to do it you'll be hunted down by any security agency/banking organization on the planet..
If your server's certificate isn't valid and properly signed by a trusted certificate authority, the possibility of a man in the middle sniffing attack by your ISP or any router along the way exists. However, it is unfeasible that someone will go to those lengths merely to sniff your connections, certainly not to sniff file sharing related connections.
In short, if your certificate is valid and properly signed, a sniffer wil not be able to decrypt your connection, otherwise it is unfeasible that he does so for filesharing purposes.
546f74616c6c792072616e646f6d20746578742e20416d617a696e671f20696e6e69742e
Poster
BT Rep: +1
Thanks for the info.
Last edited by TinkerBell; 05-16-2009 at 05:47 PM.
Posting Permissions
Reply With Quote
Bookmarks