Date: Tue, 14 Aug 2001 20:27:21 +0200 From: Pankaj <pankaj@sarai.net> To: Vladimir Terziev <vlady@rila.bg> Cc: freebsd-hackers@FreeBSD.ORG Subject: Re: tcpdump newbie question Message-ID: <20010814202721.B10786@sarai.net> In-Reply-To: <200108141512.f7EFCJc45067@star.rila.bg>; from vlady@rila.bg on Tue, Aug 14, 2001 at 06:12:19PM %2B0300 References: <20010814170310.B6044@sarai.net> <200108141512.f7EFCJc45067@star.rila.bg>
next in thread | previous in thread | raw e-mail | index | archive | help
On Tue, Aug 14, 2001 at 06:12:19PM +0300, Vladimir Terziev wrote: > > I think this is not valid for all protocols ... > > What about this packet? > > 18:08:56.232653 xxx.xxx.xxx.ssh > yyy.yyy.yyy.863: . ack 369 win 17200 > <nop,nop,timestamp 244345462 1398925626> (DF) [tos 0x10] oke dokie baby wants to read ssh packet mama says hey you can do that with tcpdump but dug song wrote an app with which you can see the length of a ssh packet but in the new version of openssh the packet length is balanced with attaching random packets seeing that version 1 was venurable to anyone analysing ur trafic Dug song gave a presentation about the tool he wrote you might wanna goto http://www.monkey.org/~dugsong/ or mail him for more or bug the hal2001 guys to put all the presentation online. ` > ---end quoted text--- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010814202721.B10786>