| --- Log opened Tue Jan 15 00:00:35 2008 |
| 00:23 | | You're now known as TheWatcher[T-2] |
| 00:26 | | You're now known as TheWatcher[zZzZ] |
| 00:42 | | gnolam [lenin@Nightstar-10613.8.5.253.static.se.wasadata.net] has quit [Quit: Z?] |
| 02:19 | | Derakon[AFK] is now known as Derakon |
| 02:36 | | Derakon is now known as Derakon[AFK] |
| 03:02 | | Vornicus is now known as Vornicus-Latens |
| 03:22 | | Forj [~Forj@Nightstar-2443.ue.woosh.co.nz] has joined #code |
| 03:22 | | mode/#code [+o Forj] by ChanServ |
| 03:42 | | Forj [~Forj@Nightstar-2443.ue.woosh.co.nz] has quit [Quit: Gone] |
| 04:22 | | Derakon[AFK] is now known as Derakon |
| 06:41 | | Derakon is now known as Derakon[AFK] |
| 08:37 | | You're now known as TheWatcher |
| 09:25 | | Vornicus-Latens is now known as Vornicus |
| 12:19 | | * Vornicus fiddles with his template thing, trying to make an adjacency graph. |
| 12:23 | <@TheWatcher> | Anyone running windows on a box with an ATI card mind testing something for me? |
| 12:53 | | * Vornicus fiddles. This doesn't work if there's two adjacent region groups, like there are in Fishermen. |
| 13:10 | | * Vornicus actually examines the Fishermen thing, to see if it actually allows that. |
| 13:15 | <@Vornicus> | hrm. Several of the images I can find have red-token'd fish next to red-token'd land. |
| 13:16 | <@McMartin> | Watcher: I've got one, but it's not a good ATI card. What do you need? |
| 13:16 | | * TheWatcher heads to the PM mobile |
| 14:07 | <@Vornicus> | Gah. Why is VornMoO suddenly popping up in my head? |
| 14:12 | | gnolam [lenin@Nightstar-10613.8.5.253.static.se.wasadata.net] has joined #Code |
| 14:12 | | mode/#code [+o gnolam] by ChanServ |
| 14:57 | | gnolam [lenin@Nightstar-10613.8.5.253.static.se.wasadata.net] has quit [Ping Timeout] |
| 15:37 | | * TheWatcher hmms, eyes vertex buffer objects |
| 15:48 | | gnolam [lenin@Nightstar-10613.8.5.253.static.se.wasadata.net] has joined #Code |
| 15:48 | | mode/#code [+o gnolam] by ChanServ |
| 17:00 | <@ToxicFrog> | It should not be this difficult to capture your own HTTPS stream. |
| 17:01 | <@ToxicFrog> | Maybe I should just perform some kind of /etc/hosts perfidy and filter it through a decrypting/encrypting SSL proxy. |
| 17:01 | <@ToxicFrog> | Of course, that means I need a decrypting/encrypting SSL proxy. |
| 17:02 | <@ToxicFrog> | And I need to convince the browser not to go OH SHIT MITM ATTACK, but that at least is easy. |
| 17:02 | <@McMartin> | OH SHIT MOTE ATTACK |
| 17:03 | <@ToxicFrog> | ? |
| 17:03 | <@McMartin> | Man On The End. =P |
| 17:03 | <@ToxicFrog> | Aah. |
| 17:04 | <@ToxicFrog> | Except in this case it does have to be MITM; I need the server's reply, too. |
| 17:04 | <@McMartin> | Though I admit the idea of Moties going after your appz0rz is also funny. |
| 17:04 | <@ToxicFrog> | ...although, if I can get the request, I can probably then use wget to get the reply. |
| 17:04 | | * ToxicFrog rummages for sslcat |
| 17:05 | <@McMartin> | ... there needs to be a cat variant called lolcat. |
| 17:05 | <@McMartin> | I'm not sure for what |
| 17:05 | <@McMartin> | But it needs to be written. |
| 17:05 | <@McMartin> | A problem must be found for which this is the solution. |
| 17:06 | <@ToxicFrog> | oh hey I have ssltap installed |
| 17:06 | <@ToxicFrog> | And if the net is to be believed it does exactly what I need. |
| 17:06 | <@McMartin> | It's on the Internet! It must be true! |
| 17:06 | <@McMartin> | Hey! |
| 17:07 | <@McMartin> | I'm on the Internet! |
| 17:07 | <@Vornicus> | So, cats speak ungrammatically, and like cheezburgers? |
| 17:07 | | * McMartin IS TRUTH. |
| 17:08 | <@ToxicFrog> | Oh. No it doesn't. |
| 17:08 | <@ToxicFrog> | It will proxy, and dump, but not decrypt. |
| 17:09 | <@Vornicus> | Why don't you just convince your browser itself to dump the content it decrypts? |
| 17:09 | <@McMartin> | Dude. I am running out of tea. |
| 17:10 | | * Vornicus sends McM a palette of tea, complete with forklift. |
| 17:10 | <@McMartin> | Wouldn't that be a "pallet" of tea? |
| 17:10 | <@Vornicus> | yes. |
| 17:10 | | * Vornicus always forgets which is which. |
| 17:10 | <@McMartin> | The -ette is the dinky one. |
| 17:10 | <@ToxicFrog> | There's "sslcat", but it doesn't have a listen mode... |
| 17:10 | <@Vornicus> | ah, of course |
| 17:10 | <@ToxicFrog> | Maybe I could add one. |
| 17:11 | <@McMartin> | SRMD in 3... 2... 1... |
| 17:11 | <@Vornicus> | or, rather, I always forget that the word "pallet" exists, but |
| 17:11 | <@McMartin> | I'm not actually sure I spelled it right, either. |
| 17:11 | <@McMartin> | Anyway, back to !code. |
| 17:12 | <@McMartin> | ;_; |
| 17:12 | <@Vornicus> | you did |
| 17:12 | | * McMartin proofreads |
| 17:12 | <@ToxicFrog> | Hmm. it's written in perl. |
| 17:12 | <@ToxicFrog> | This could get ugly. |
| 17:12 | <@Vornicus> | Too late. |
| 17:12 | <@McMartin> | It isn't already? |
| 17:12 | <@TheWatcher> | Pft |
| 17:12 | <@McMartin> | Damn you, Vorn |
| 17:12 | <@TheWatcher> | Bah! |
| 17:13 | <@ToxicFrog> | Oh, no, it's written in C. |
| 17:13 | <@Vornicus> | ...one would think that you'd be able to tell that. |
| 17:13 | <@McMartin> | #define $ |
| 17:14 | <@ToxicFrog> | The one in perl is just a five-line script to show off the Net::SSLeay::sslcat() call. |
| 17:14 | <@McMartin> | >_> |
| 17:14 | <@ToxicFrog> | Vornicus: well, I hadn't actually looked at the source |
| 17:14 | <@ToxicFrog> | And a google for "sslcat" turns up both the C version, and the perl version, and discussion about the perl library call of the same name. |
| 17:14 | <@McMartin> | What does the "eay" mean, do you know? |
| 17:15 | <@Vornicus> | Eat At Yancey's |
| 17:16 | <@ToxicFrog> | Son of a bitch, the C API to SSL is nasty. |
| 17:16 | <@ToxicFrog> | It might actually be better to do this in Perl. |
| 17:16 | <@McMartin> | Heh. |
| 17:16 | <@McMartin> | That reminds me, I still need to write up my UQM Memory Model post. |
| 17:16 | | * McMartin will do his real work first, though. |
| 17:17 | <@ToxicFrog> | http://search.cpan.org/src/SAMPO/Net_SSLeay.pm-1.25/examples/sslcat.pl <-- TheWatcher, what does qw() do? |
| 17:17 | <@McMartin> | It's a form of quotation. |
| 17:18 | <@McMartin> | I forget which one, though. |
| 17:18 | <@Vornicus> | qw apparently creates a list of strings from a string, splitting on whitespace |
| 17:18 | <@TheWatcher> | quite words, essentially qw(foo bar quux) is ("foo", "bar", "quux") |
| 17:18 | <@TheWatcher> | *quotes |
| 17:18 | <@ToxicFrog> | Oh, hahaha, there's more than one perl version too |
| 17:18 | | * ToxicFrog goes insane |
| 17:18 | <@Vornicus> | Google says http://www.perlmeme.org/howtos/perlfunc/qw_function.html <--- |
| 17:18 | <@ToxicFrog> | None of them support listen mode! |
| 17:19 | <@TheWatcher> | huh? |
| 17:20 | <@Vornicus> | TF seems to want to hack into his own ssl stream. |
| 17:20 | <@ToxicFrog> | TheWatcher: I have a browser making a request over HTTPS. |
| 17:20 | <@ToxicFrog> | I need the actual content of the request. |
| 17:21 | <@Vornicus> | Why he doesn't hack one endpoint to dump, I don't know. |
| 17:21 | <@ToxicFrog> | Vornicus: that's what I'm trying to do |
| 17:21 | <@ToxicFrog> | Get the browser to connect to a listening sslcat that will dump the decrypted request, instead of to the real server. |
| 17:21 | <@ToxicFrog> | The problem is getting the listening sslcat. |
| 17:23 | <@ToxicFrog> | I could dump it at the browser end, except that neither Opera nor FF seem to have that feature, nor can you implement it with NPAPI. |
| 17:26 | <@ToxicFrog> | I've found three - four if you count wget - programs for making SSL connections to remote machines, but nothing for listening for incoming ones. |
| 17:26 | <@ToxicFrog> | And Perl's SSL interface doesn't seem to have anything to do that easily either. |
| 17:35 | <@TheWatcher> | http://www.cpanforum.com/threads/433 any use? |
| 19:06 | | Netsplit Blargh.CA.US.Nightstar.Net <-> DeepThought.NY.US.Nightstar.Net quits: Syloqs-AFH, @EvilDarkLord, @Serah, @Attilla, MyCatVerbs, @AnnoDomini, @ToxicFrog, @C_tiger, Reiver, @Vornicus, (+4 more, use /NETSPLIT to show all of them) |
| 19:06 | | Netsplit over, joins: McMartin, C_tiger, jerith, Chalain, Reiver, Serah, EvilDarkLord, Attilla, MyCatVerbs, ToxicFrog (+4 more) |
| 19:06 | | mode/#code [+o TheWatcher] by ChanServ |
| 19:06 | | mode/#code [+v DiceBot] by ChanServ |
| 19:06 | | mode/#code [+o gnolam] by ChanServ |
| 19:06 | | mode/#code [-o Derakon[AFK]] by ChanServ |
| 19:08 | | Chalcedon [~Chalcedon@203.211.126.ns-3357] has joined #code |
| 19:09 | | mode/#code [+o Chalcedon] by ChanServ |
| 19:22 | | Chalcedon [~Chalcedon@203.211.126.ns-3357] has quit [Ping Timeout] |
| 19:23 | | Chalcedon [~Chalcedon@Nightstar-2443.ue.woosh.co.nz] has joined #code |
| 19:23 | | mode/#code [+o Chalcedon] by ChanServ |
| 21:22 | < ToxicFrog> | TheWatcher: it does. Thank you. |
| 21:22 | <@TheWatcher> | Excellent. |
| 21:56 | | AnnoDomini [AnnoDomini@83.21.85.ns-3986] has quit [Ping Timeout] |
| 22:03 | | AnnoDomini [AnnoDomini@Nightstar-29607.neoplus.adsl.tpnet.pl] has joined #Code |
| 22:03 | | mode/#code [+o AnnoDomini] by ChanServ |
| 22:34 | | Vornicus is now known as Vornicus-Latens |
| --- Log closed Wed Jan 16 00:00:41 2008 |