Wireshark Lab 2, Part 5: HTTP Authentication

Lab Video:

———————————————————————————————————————————————————————-

STEPS:

Step 1:Make sure your browser’s cache is cleared, as discussed above, and close down your browser. Then, start up your browser

Step 2: Start up the Wireshark packet sniffer

Step 3: Enter the following URL into your browser http://gaia.cs.umass.edu/wireshark-labs/protected_pages/HTTP-wiresharkfile5.html Type the requested user name and password into the pop up box.

Step 4:Stop Wireshark packet capture, and enter “http” in the display-filter-specification window, so that only captured HTTP messages will be displayed later in the packet-listing window.

———————————————————————————————————————————————————————

QUESTIONS:

18. What is the server’s response (status code and phrase) in response to the initial HTTP GET message from your browser?

• The servers intial response was “401 Authentication Required”

19. When your browser’s sends the HTTP GET message for the second time, what new field is included in the HTTP GET message?

• The new field that is now included is the authorization field. This is included because we sent the server a username and password along with our request stating that we were authorized to receive the page.