sniffers
Hewitt Tech
hewitt_tech at comcast.net
Sun Apr 25 23:05:01 EDT 2004
One thing that might affect which tool you decide to use - if you need an
intrusion detection system, you might want to use snort. I've used Ethereal
in an all windows environment to track down worms/trojans. In that scenario
you might only need 5 or 10 seconds worth of traffic. But if you are looking
for potential intruders, Snort is very powerful and can be configured to
trap intruders more easily. Check out: www.snort.org for more info. Ethereal
can be found at: www.ethereal.com After poking around a bit on the Ethereal
web site I found that it's licensed under GNU (doesn't quite jive with the
.com web site).
-Alex
----- Original Message -----
From: <bscott at ntisys.com>
To: "Greater NH Linux User Group" <discuss at gnhlug.org>
Sent: Sunday, April 25, 2004 10:46 PM
Subject: Re: sniffers
> On Sun, 25 Apr 2004, at 8:23pm, bmcculley at rcn.com wrote:
> > Just got a question from a friend who is looking for a sniffer
> > to capture network session traffic ...
>
> Ethereal. http://www.ethereal.com
>
> It has both excellent GUI and command-line components, and includes
> analysis code for an amazing number of protocols. All that, and free,
too.
> I'm told it even works on MS-Windows.
>
> --
> Ben Scott <bscott at ntisys.com>
> | The opinions expressed in this message are those of the author and do |
> | not represent the views or policy of any other person or organization. |
> | All information is provided without warranty of any kind. |
>
> _______________________________________________
> gnhlug-discuss mailing list
> gnhlug-discuss at mail.gnhlug.org
> http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss
>
More information about the gnhlug-discuss
mailing list