Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Sun, 28 Aug 2011 14:28:28 +0400
From: Vasiliy Kulikov <segoon@...nwall.com>
To: owl-dev@...ts.openwall.com
Subject: net2pcap (was: tcpdump)

Hi,

Another possibility for inclusion:

http://www.secdev.org/projects/net2pcap/
https://github.com/nbareil/net2pcap

"Net2PCAP is a simple network to pcap capture file for Linux. Its goal
is to be as simple as possible (hence auditable) so that good
confidence can be reached, for it to be used in hostile
environments.

It does not use any library except a bit of libc. It does not do
anything except dumping network traffic from an interface to a pcap
file. It is less than 400 lines of C. Please audit it !"


It has NO dependecies except libc.  The only thing it can do is to save
dumps into pcap file (and show hex output).  So, for dump analysis
another tool is still needed.  However, as Solar notices (off-list), it
can be done as unprivileged user or even on another machine.


FWIW, I've sent some ideas/fixes to upstream.

Thanks,

-- 
Vasiliy

Powered by blists - more mailing lists

Your e-mail address:

Powered by Openwall GNU/*/Linux - Powered by OpenVZ