Ubuntu
ssldump package

ssldump does not decrypt traffic

Bug #1003620 reported by Mike Pickering
18
This bug affects 4 people
Affects Status Importance Assigned to Milestone
ssldump (Ubuntu)
Confirmed
Undecided
Unassigned

Bug Description

ssldump does not decrypt traffic when the -d parameter is supplied. It appears not to be built with SSL support; "ssldump -v" does not show "Compiled with OpenSSL: decryption enabled" in the output.

I was able to build it by downloading the source and running the configure script with the --with-openssl-lib=/lib/x86_64-linux-gnu parameter. I also hacked the configure script to recognize the long form of the names (libssl.so.1.0.0 vs. libssl.so and libcrypto.so.1.0.0 vs. libcrypto.so), since that was also causing it to fail.

It compiled fine after that, with support for decryption. This is a brand new install of Ubuntu 12.04 on x86_64

$ lsb_release -rd
Description: Ubuntu 12.04 LTS
Release: 12.04

$ apt-cache policy ssldump
ssldump:
  Installed: 0.9b3-4.1
  Candidate: 0.9b3-4.1
  Version table:
 *** 0.9b3-4.1 0
        500 http://us.archive.ubuntu.com/ubuntu/ precise/universe amd64 Packages
        100 /var/lib/dpkg/status

Revision history for this message
Mike Pickering (mpicker0) wrote :
Revision history for this message
Launchpad Janitor (janitor) wrote :

Status changed to 'Confirmed' because the bug affects multiple users.

Changed in ssldump (Ubuntu):
status: New → Confirmed
Revision history for this message
Graham Leggett (minfrin-y) wrote :

The -N option also seems to be blindly unsupported on Trusty, for the same reason (no link to openssl):

       -N Attempt to parse ASN.1 when it appears, such as in certificates and DNs.

Ssldump without SSL support is pointless. This tool either needs to be fixed, or removed completely from Ubuntu.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.