Request for help with operating system fingerprints
William Stearns
wstearns at pobox.com
Sun Sep 28 23:09:00 EDT 2003
Good day, all,
Michal Zalewski is back doing more development on p0f, the passive
OS fingerprinting tool. The development site is at
http://lcamtuf.coredump.cx/p0f.shtml and the files themselves can be found
at http://lcamtuf.coredump.cx/p0f/
I'm writing because while the tool does a good job of identifying
operating systems, it can only be as good as its list of signatures.
Michal has set up an automated web site to collect these signatures. If
you go to:
http://lcamtuf.coredump.cx/p0f-help/
, that page will tell you if it's seen packets from your operating
system or not. You can then enter a description of the operating system
if it's a new one to p0f. When traffic from your operating system type is
seen in the future, p0f will be able to return better results.
If you have time, we would both appreciate it if you would connect
to that site from as many different OS's as possible and enter a
description if there isn't one there already. Also, if you have friends
with different operating systems, please pass this request along. Thanks
in advance for making this tool better for all of us!
Please include Michal and myself on any responses - thanks.
Cheers,
- Bill
---------------------------------------------------------------------------
"Scattered showers my ass!"
-- Noah
(Courtesy of "Michael B. Trausch" <mtrausch at wcnet.org>)
--------------------------------------------------------------------------
William Stearns (wstearns at pobox.com). Mason, Buildkernel, freedups, p0f,
rsync-backup, ssh-keyinstall, dns-check, more at: http://www.stearns.org
Linux articles at: http://www.opensourcedigest.com
--------------------------------------------------------------------------
More information about the gnhlug-discuss
mailing list