13 Dec
2010
13 Dec
'10
11:53 p.m.
Hi Bro people,
I submit you a small patch.
For ICMP, I wanted to access the payload of the packets.
For SMB, I fixed a small bug and added the processid field.
Hope you find it useful.
Cheers,
Julien Sentier
Une messagerie gratuite, garantie à vie et des services en plus, ça vous tente ?
Je crée ma boîte mail www.laposte.net
Une messagerie gratuite, garantie à vie et des services en plus, ça vous tente ?
Je crée ma boîte mail www.laposte.net
14 Dec
14 Dec
7:28 a.m.
On Dec 14, 2010, at 2:53 AM, j.sentier206 wrote:
For ICMP, I wanted to access the payload of the
packets.
This absolutely makes sense. I'll file a ticket with the changes to the ICMP
analyzer. We'll have to discuss and see if it's something that we want to add.
I can see why you'd want it though.
For SMB, I fixed a small bug and added the processid
field.
Unfortunately, the SMB analyzer does have several bugs that prevent it from working but it
looks like you caught all of them. For the 1.6 release, we're hoping to have high
quality SMB and SMB2 analyzers but they're being completely rewritten. If you have a
further interest in working on SMB+SMB2 analyzers, please let us know, we can point you in
the right direction.
Thanks,
.Seth
9:05 a.m.
On Dec 14, 2010, at 2:53 AM, j.sentier206 wrote:
Thank you for the ticket.
I hope I will be able to access ICMP payloads in bro 1.6.
For ICMP, I wanted to access the payload of the
packets.
This absolutely makes sense. I'll file a ticket with the changes to the ICMP
analyzer. We'll have to discuss and see if it's something that we want to add. I
can see why you'd want it though. For SMB, I fixed a small bug and added the
processid field.
Unfortunately, the SMB analyzer does have several bugs that prevent it from working but
it looks like you caught all of them. For the 1.6 release, we're hoping to have high
quality SMB and SMB2 analyzers but they're being completely rewritten. If you have a
further interest in working on SMB+SMB2 analyzers, please let us know, we can point you in
the right direction.
3685
days inactive
3685
days old
2 comments
2 participants
participants (2)
-
j.sentier206 -
Seth Hall