Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
D
D
Denis Sechin2017-09-01 12:03:33
Wireshark
Denis Sechin, 2017-09-01 12:03:33

Why doesn't https handshake happen when visiting google.com or youtube.com?

I noticed an interesting thing in wireshark, when you enter, say, habrahabr.ru in wireshark, ssl.handshake clientHello and serverHello packets immediately pour in. When you go to the same google.com or youtube.com, the handshake process does not occur, in any case, the "shark" does not see it, how is the session established then? or rather, how does the client receive ssl?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
A
athacker, 2017-09-01
@tamogavk

The TLS specification provides for the ability to "cache" connection metadata. The client sends the ID of the previous connection, the server sees this ID in its cache, and the connection is established according to a simplified scheme. This was done in order to reduce the load, since the complete establishment of a TLS connection is a rather difficult operation.

Similar questions
A
AlexBin2015-08-11 17:40:54
Why did Wireshark stop saving the last Capture Filter? 0Reply
A
Almik Oh! Give me a guitar2015-09-01 08:23:33
How to intercept data over wifi? 4Reply
X
Xaip2017-08-08 14:23:41
Can't connect capture packet to wireshark? 1Reply
D
dnata2017-09-15 22:56:38
Why is RST missing from a SYN port scan? 2Reply
P
pavuuuk2020-04-02 18:32:00
How to send echo request from laptop to phone? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question