From owner-freebsd-stable@FreeBSD.ORG  Fri Oct  6 20:19:57 2006
Return-Path: <owner-freebsd-stable@FreeBSD.ORG>
X-Original-To: freebsd-stable@freebsd.org
Delivered-To: freebsd-stable@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id BC3FA16A40F
	for <freebsd-stable@freebsd.org>; Fri,  6 Oct 2006 20:19:57 +0000 (UTC)
	(envelope-from jdc@koitsu.dyndns.org)
Received: from sccrmhc13.comcast.net (sccrmhc13.comcast.net [204.127.200.83])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 5336243D45
	for <freebsd-stable@freebsd.org>; Fri,  6 Oct 2006 20:19:57 +0000 (GMT)
	(envelope-from jdc@koitsu.dyndns.org)
Received: from icarus.home.lan
	(c-67-174-220-97.hsd1.ca.comcast.net[67.174.220.97])
	by comcast.net (sccrmhc13) with ESMTP
	id <200610062019560130048qmfe>; Fri, 6 Oct 2006 20:19:56 +0000
Received: by icarus.home.lan (Postfix, from userid 1000)
	id D1BE81FA037; Fri,  6 Oct 2006 13:19:55 -0700 (PDT)
Date: Fri, 6 Oct 2006 13:19:55 -0700
From: Jeremy Chadwick <freebsd@jdc.parodius.com>
To: Dominik Zalewski <kobazik@gmail.com>
Message-ID: <20061006201955.GA36955@icarus.home.lan>
Mail-Followup-To: Dominik Zalewski <kobazik@gmail.com>,
	freebsd-stable@freebsd.org, Eric <heli@mikestammer.com>
References: <4762624a0610061300u4e31b378oaf1eb9a732913c16@mail.gmail.com>
	<4526B6CE.7030601@mikestammer.com>
	<4762624a0610061311i7f7cd11eo853029537e75dda7@mail.gmail.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <4762624a0610061311i7f7cd11eo853029537e75dda7@mail.gmail.com>
X-PGP-Key: http://jdc.parodius.com/pubkey.asc
User-Agent: Mutt/1.5.13 (2006-08-11)
Cc: Eric <heli@mikestammer.com>, freebsd-stable@freebsd.org
Subject: Re: Capture all incoming/outgoing email messages
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Production branch of FreeBSD source code <freebsd-stable.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>, 
	<mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 06 Oct 2006 20:19:57 -0000

On Fri, Oct 06, 2006 at 10:11:17PM +0200, Dominik Zalewski wrote:
>   I know most of MTAs can do it but I dont want users to use local MTA for
> outgoing emails, plus this solution is just for outgoing emails , what about
> pop3 ?
> I just want to capture all smtp/pop3 traffic in packets level.

So what's stopping you?  tcpdump, Ethereal, sniffit, snort... they'll
all do this.  Anything that dumps to a libpcap formatted file can
be read back using tcpdump or Ethereal (Ethereal would be best, since
it can perform general formatting analysis on specific packets, such
as SMTP and POP3).

-- 
| Jeremy Chadwick                                 jdc at parodius.com |
| Parodius Networking                        http://www.parodius.com/ |
| UNIX Systems Administrator                   Mountain View, CA, USA |
| Making life hard for others since 1977.               PGP: 4BD6C0CB |