Firefox not creating sslkeylog file after setting SSLKEYLOGFILE variable

The name of the pictureThe name of the pictureThe name of the pictureClash Royale CLAN TAG#URR8PPP








up vote
0
down vote

favorite












I ran this in the terminal: export SSLKEYLOGFILE=/home/user/sslkeylog



After opening regular Firefox, the developer version of Firefox and Chromium, "sslkeylog" was never created, even after visiting a site that uses TLS. I also tried setting the file name to "sslkeylog.log", but that did not help either.



I want to decrypt my web browser traffic using wireshark.
`




firefox chromium environment-variables ssl tls




share|improve this question




















  • How did you open FF after having run that terminal command? From terminal or from the graphical environment?
    – Gunnar Hjalmarsson
    May 16 at 22:19











  • I opened FF from the graphical environment. After opening it from the terminal, the sslkeylog file was succesffully created. Thank you.
    – J. DOe
    May 16 at 22:21










  • The conclusion then is that you need to set that variable persistently, e.g. in ~/.profile which is sourced by the display manager at login.
    – Gunnar Hjalmarsson
    May 16 at 22:22















up vote
0
down vote

favorite












I ran this in the terminal: export SSLKEYLOGFILE=/home/user/sslkeylog



After opening regular Firefox, the developer version of Firefox and Chromium, "sslkeylog" was never created, even after visiting a site that uses TLS. I also tried setting the file name to "sslkeylog.log", but that did not help either.



I want to decrypt my web browser traffic using wireshark.
`




firefox chromium environment-variables ssl tls




share|improve this question




















  • How did you open FF after having run that terminal command? From terminal or from the graphical environment?
    – Gunnar Hjalmarsson
    May 16 at 22:19











  • I opened FF from the graphical environment. After opening it from the terminal, the sslkeylog file was succesffully created. Thank you.
    – J. DOe
    May 16 at 22:21










  • The conclusion then is that you need to set that variable persistently, e.g. in ~/.profile which is sourced by the display manager at login.
    – Gunnar Hjalmarsson
    May 16 at 22:22













up vote
0
down vote

favorite









up vote
0
down vote

favorite











I ran this in the terminal: export SSLKEYLOGFILE=/home/user/sslkeylog



After opening regular Firefox, the developer version of Firefox and Chromium, "sslkeylog" was never created, even after visiting a site that uses TLS. I also tried setting the file name to "sslkeylog.log", but that did not help either.



I want to decrypt my web browser traffic using wireshark.
`




firefox chromium environment-variables ssl tls




share|improve this question












I ran this in the terminal: export SSLKEYLOGFILE=/home/user/sslkeylog



After opening regular Firefox, the developer version of Firefox and Chromium, "sslkeylog" was never created, even after visiting a site that uses TLS. I also tried setting the file name to "sslkeylog.log", but that did not help either.



I want to decrypt my web browser traffic using wireshark.
`





firefox chromium environment-variables ssl tls





share|improve this question











share|improve this question




share|improve this question










asked May 16 at 21:58









J. DOe

91




91











  • How did you open FF after having run that terminal command? From terminal or from the graphical environment?
    – Gunnar Hjalmarsson
    May 16 at 22:19











  • I opened FF from the graphical environment. After opening it from the terminal, the sslkeylog file was succesffully created. Thank you.
    – J. DOe
    May 16 at 22:21










  • The conclusion then is that you need to set that variable persistently, e.g. in ~/.profile which is sourced by the display manager at login.
    – Gunnar Hjalmarsson
    May 16 at 22:22

















  • How did you open FF after having run that terminal command? From terminal or from the graphical environment?
    – Gunnar Hjalmarsson
    May 16 at 22:19











  • I opened FF from the graphical environment. After opening it from the terminal, the sslkeylog file was succesffully created. Thank you.
    – J. DOe
    May 16 at 22:21










  • The conclusion then is that you need to set that variable persistently, e.g. in ~/.profile which is sourced by the display manager at login.
    – Gunnar Hjalmarsson
    May 16 at 22:22
















How did you open FF after having run that terminal command? From terminal or from the graphical environment?
– Gunnar Hjalmarsson
May 16 at 22:19





How did you open FF after having run that terminal command? From terminal or from the graphical environment?
– Gunnar Hjalmarsson
May 16 at 22:19













I opened FF from the graphical environment. After opening it from the terminal, the sslkeylog file was succesffully created. Thank you.
– J. DOe
May 16 at 22:21




I opened FF from the graphical environment. After opening it from the terminal, the sslkeylog file was succesffully created. Thank you.
– J. DOe
May 16 at 22:21












The conclusion then is that you need to set that variable persistently, e.g. in ~/.profile which is sourced by the display manager at login.
– Gunnar Hjalmarsson
May 16 at 22:22





The conclusion then is that you need to set that variable persistently, e.g. in ~/.profile which is sourced by the display manager at login.
– Gunnar Hjalmarsson
May 16 at 22:22











1 Answer
1






active

oldest

votes

















up vote
1
down vote













The variable you describe works as intended for me on Firefox 62. Perhaps the browser builds you are using have been built to ignore the variable? From https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/Key_Log_Format:




[S]tarting with NSS 3.24 (used by Firefox 48 and 49 only), the
SSLKEYLOGFILE approach is disabled by default for optimized builds
using the Makefile (those using gyp via build.sh are not affected).
Distributors can re-enable it at compile time though (using the
NSS_ALLOW_SSLKEYLOGFILE=1 make variable) which is done for the
official Firefox binaries. (See bug 1188657.) Notably, Debian does not
have this option enabled, see Debian bug 842292.







share|improve this answer




















  • I only have Firefox 60 and 61.0b5, though it should work on these versions according to the link in your answer. Perhaps it would work if I tried it on Firefox 62.
    – J. DOe
    May 16 at 22:17










Your Answer







StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "89"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);

else
createEditor();

);

function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
convertImagesToLinks: true,
noModals: false,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);



);








 

draft saved


draft discarded


















StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f1037134%2ffirefox-not-creating-sslkeylog-file-after-setting-sslkeylogfile-variable%23new-answer', 'question_page');

);

Post as a guest

















1 Answer
1






active

oldest

votes








1 Answer
1






active

oldest

votes









active

oldest

votes






active

oldest

votes








up vote
1
down vote













The variable you describe works as intended for me on Firefox 62. Perhaps the browser builds you are using have been built to ignore the variable? From https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/Key_Log_Format:




[S]tarting with NSS 3.24 (used by Firefox 48 and 49 only), the
SSLKEYLOGFILE approach is disabled by default for optimized builds
using the Makefile (those using gyp via build.sh are not affected).
Distributors can re-enable it at compile time though (using the
NSS_ALLOW_SSLKEYLOGFILE=1 make variable) which is done for the
official Firefox binaries. (See bug 1188657.) Notably, Debian does not
have this option enabled, see Debian bug 842292.







share|improve this answer




















  • I only have Firefox 60 and 61.0b5, though it should work on these versions according to the link in your answer. Perhaps it would work if I tried it on Firefox 62.
    – J. DOe
    May 16 at 22:17














up vote
1
down vote













The variable you describe works as intended for me on Firefox 62. Perhaps the browser builds you are using have been built to ignore the variable? From https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/Key_Log_Format:




[S]tarting with NSS 3.24 (used by Firefox 48 and 49 only), the
SSLKEYLOGFILE approach is disabled by default for optimized builds
using the Makefile (those using gyp via build.sh are not affected).
Distributors can re-enable it at compile time though (using the
NSS_ALLOW_SSLKEYLOGFILE=1 make variable) which is done for the
official Firefox binaries. (See bug 1188657.) Notably, Debian does not
have this option enabled, see Debian bug 842292.







share|improve this answer




















  • I only have Firefox 60 and 61.0b5, though it should work on these versions according to the link in your answer. Perhaps it would work if I tried it on Firefox 62.
    – J. DOe
    May 16 at 22:17












up vote
1
down vote










up vote
1
down vote









The variable you describe works as intended for me on Firefox 62. Perhaps the browser builds you are using have been built to ignore the variable? From https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/Key_Log_Format:




[S]tarting with NSS 3.24 (used by Firefox 48 and 49 only), the
SSLKEYLOGFILE approach is disabled by default for optimized builds
using the Makefile (those using gyp via build.sh are not affected).
Distributors can re-enable it at compile time though (using the
NSS_ALLOW_SSLKEYLOGFILE=1 make variable) which is done for the
official Firefox binaries. (See bug 1188657.) Notably, Debian does not
have this option enabled, see Debian bug 842292.







share|improve this answer












The variable you describe works as intended for me on Firefox 62. Perhaps the browser builds you are using have been built to ignore the variable? From https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/Key_Log_Format:




[S]tarting with NSS 3.24 (used by Firefox 48 and 49 only), the
SSLKEYLOGFILE approach is disabled by default for optimized builds
using the Makefile (those using gyp via build.sh are not affected).
Distributors can re-enable it at compile time though (using the
NSS_ALLOW_SSLKEYLOGFILE=1 make variable) which is done for the
official Firefox binaries. (See bug 1188657.) Notably, Debian does not
have this option enabled, see Debian bug 842292.








share|improve this answer












share|improve this answer



share|improve this answer










answered May 16 at 22:13









dsstorefile1

1,243111




1,243111











  • I only have Firefox 60 and 61.0b5, though it should work on these versions according to the link in your answer. Perhaps it would work if I tried it on Firefox 62.
    – J. DOe
    May 16 at 22:17
















  • I only have Firefox 60 and 61.0b5, though it should work on these versions according to the link in your answer. Perhaps it would work if I tried it on Firefox 62.
    – J. DOe
    May 16 at 22:17















I only have Firefox 60 and 61.0b5, though it should work on these versions according to the link in your answer. Perhaps it would work if I tried it on Firefox 62.
– J. DOe
May 16 at 22:17




I only have Firefox 60 and 61.0b5, though it should work on these versions according to the link in your answer. Perhaps it would work if I tried it on Firefox 62.
– J. DOe
May 16 at 22:17












 

draft saved


draft discarded


























 


draft saved


draft discarded














StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f1037134%2ffirefox-not-creating-sslkeylog-file-after-setting-sslkeylogfile-variable%23new-answer', 'question_page');

);

Post as a guest
































































-

Popular posts from this blog

pylint3 and pip3 broken

Image
Clash Royale CLAN TAG #URR8PPP up vote 0 down vote favorite I have tried sudo apt remove --purge on various packages. I get the same when I reinstall. I have also tried reinstall using aptitude. This does not work. My current workaround is to run pylint3 as root, which works, but is bad practice. pip3 $ pip3 Traceback (most recent call last): File "/usr/lib/python3/dist-packages/pip/_vendor/__init__.py", line 33, in vendored __import__(vendored_name, globals(), locals(), level=0) ImportError: No module named 'pip._vendor.pkg_resources' During handling of the above exception, another exception occurred: Traceback (most recent call last): File "/usr/bin/pip3", line 9, in <module> from pip import main File "/usr/lib/python3/dist-packages/pip/__init__.py", line 13, in <module> from pip.exceptions import InstallationError, CommandError, PipError File "/usr/lib/python3/dist-packages/pip/exceptions.py", line 6, ...
Read more

Missing snmpget and snmpwalk

Image
Clash Royale CLAN TAG #URR8PPP up vote 0 down vote favorite I have installed Zabbix appliance, directly preinstalled and found that there is missing snmpwalk and snmpget commands. I tried to install it with: apt-get install net-snmp-utils but I have error message: Unable to locate package. I have also check what from SNMP is preinstalled and there is: libsnmp-base libsnmp30:amd64 snmp-mibs-downloader snmpd snmptrapd snmptrapfmt How can I install snmpget and snmpwalk ? snmp zabbix share | improve this question edited Jan 29 at 10:10 Yaron 8,552 7 18 38 asked Jan 29 at 9:51 Alfista 1 apt install snmp perhaps ? If named differently - apt cache snmp – fugitive Jan 29 at 10:00 add a comment  |  up vote 0 down vote favorite I have installed Zabbix appliance, directly preinstalled and found that there is missing snmpwalk and snmpget commands. I tried...
Read more

How to enroll fingerprints to Ubuntu 17.10 with VFS491

Image
Clash Royale CLAN TAG #URR8PPP up vote 1 down vote favorite I decided to switch from Windows to Ubuntu 17.10, I meet it like 8 years ago and I didn't decided to switch until now (haha). Well, my actual device is an HP Probook 4540s with a Validity fingerprint sensor (VFS491). The fingerprint sensor worked fine on Windows but I can't get it to work in Ubuntu. The device is recognized as 138a:003d but is not detected as a fingerprint scanner by some apps like Fingerprint GUI. I want to use the fingerprint scanner to log in into my user account in Ubuntu but it doesn't supports fingerprints without special software and the drivers of the fingerprint scanner are available for Windows but not for any Linux distribution. I found something on GitHub (https://github.com/eekpie/libfprint) about the integration of the VFS491 in libfprint and I think it can help but I don't know what to do with it, so that's why I need the help of the community to do it since I am...
Read more