Wireshark · Ethereal-dev: [Ethereal-dev] Has anyone seen TACACS+ Decryption work?

Ethereal-dev: [Ethereal-dev] Has anyone seen TACACS+ Decryption work?

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: Richard Sharpe <rsharpe@xxxxxxxxxxxxxxxxx>

Date: Thu, 29 Sep 2005 08:01:27 -0700 (PDT)

Hi,

I have been looking at TACACS+ with a view to uncovering flaws with serverimplementations.

I have something that generates a valid encrypted TACACS+ authen reqest,because the server code I am using logs the request (including the username Iset up) and sends back a response.

However, Ethereal 0.10.12 for Mac OS X Tiger (10.4?) fails to properly decryptthe request or response, which is strange.

I looked at the md5_xor code in the packet-tacacs.c source and it looks correctand is similar to what I had to write.


Has anyone seen this actually decrypt TACACS+ packet bodies?

I wonder if the problem is with the handling of the decrypted data.

Regards
-------
Richard Sharpe, rsharpe[at]richardsharpe.com, rsharpe[at]samba.org,
sharpe[at]ethereal.com, http://www.richardsharpe.com

Follow-Ups:
- Re: [Ethereal-dev] Has anyone seen TACACS+ Decryption work?
  - From: Graeme Hewson

Prev by Date: [Ethereal-dev] buildbot failure in FreeBSD 5.3 (IA64)
Next by Date: [Ethereal-dev] 802.11 decode within LWAPP data frame
Previous by thread: [Ethereal-dev] Has anyone seen TACACS+ Decryption work?
Next by thread: Re: [Ethereal-dev] Has anyone seen TACACS+ Decryption work?
Index(es):
- Date
- Thread