[*] [2011-03-10 18:05:00,224] DEBUG:SSLProtocol: Initializing
[*] [2011-03-10 18:05:00,224] DEBUG:Mallory.main: created a <class 'protocol.sslproto.SSLProtocol'> class
[*] [2011-03-10 18:05:00,224] DEBUG:SSLProto: configure_server_socket
[*] [2011-03-10 18:05:00,735] DEBUG:SSLProto: Getting common name from socket
[*] [2011-03-10 18:05:00,740] DEBUG:SSLProto: got CN: server.domain.local
+ '[' -z server.domain.local ']'
+ DOMAIN=server.domain.local
+ OPENSSL=openssl
+ '[' '!' -d ca ']'
+ mkdir -p certs
+ openssl genrsa -out certs/server.domain.local.key 2048
Generating RSA private key, 2048 bit long modulus
...+++
.................................................................................+++
e is 65537 (0x10001)
+ cp openssl-cert.cnf certs/server.domain.local.cnf
+ echo 'commonName = server.domain.local'
+ openssl req -new -key certs/server.domain.local.key -out certs/server.domain.local.csr -config certs/server.domain.local.cnf
+ openssl ca -batch -config openssl-ca.cnf -in certs/server.domain.local.csr -out certs/server.domain.local.cer
Using configuration from openssl-ca.cnf
Check that the request matches the signature
Signature ok
Certificate Details:
Serial Number: 33 (0x21)
Validity
Not Before: Mar 10 23:05:00 2011 GMT
Not After : Dec 4 23:05:00 2013 GMT
Subject:
commonName = server.domain.local
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature, Non Repudiation, Key Encipherment, Data Encipherment
X509v3 Subject Key Identifier:
D1:69:A4:4D:B2:3F:E2:D5:3B:B9:94:6C:6A:67:7D:52:7F:73:E0:D5
X509v3 Authority Key Identifier:
keyid:84:39:A5:38:E7:82:EF:D2:26:B9:34:2B:2E:F7:25:62:AD:79:BF:DE
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Basic Constraints: critical
CA:FALSE
Certificate is to be certified until Dec 4 23:05:00 2013 GMT (1000 days)
Write out database with 1 new entries
Data Base Updated
[*] [2011-03-10 18:05:00,988] INFO:TcpProtocol.forward_any(): Setting up forward for client-->server ('192.168.10.234', 1175)-->('IP.IP.IP.IP', 443)
[*] [2011-03-10 18:05:00,995] INFO:TcpProtocol.forward_any(): Setting up forward for client-->server ('192.168.10.234', 1175)-->('IP.IP.IP.IP', 443)
[*] [2011-03-10 18:05:01,004] DEBUG:forward_any(): [c2s] CLOSE
[*] [2011-03-10 18:05:01,005] DEBUG:forward_any(): conndata:clientip:192.168.10.234, clientport:1175, serverip:IP.IP.IP.IP, serverport:443 conncount:0, direction:c2s
[*] [2011-03-10 18:05:01,111] DEBUG:forward_any(): [s2c] CLOSE
[*] [2011-03-10 18:05:01,111] DEBUG:forward_any(): conndata:clientip:192.168.10.234, clientport:1175, serverip:IP.IP.IP.IP, serverport:443 conncount:0, direction:s2c