Date: Wed, 11 Dec 1996 01:11:56 -0800 From: obrien@NUXI.com (David E. O'Brien) To: msmith@atrad.adelaide.edu.au (Michael Smith) Cc: security@freebsd.org Subject: Re: Risk of having bpf0? (was URGENT: Packet sniffer found on my system) Message-ID: <Mutt.19961211011156.obrien@relay.nuxi.com> In-Reply-To: <199612110634.RAA22676@genesis.atrad.adelaide.edu.au>; from Michael Smith on Dec 11, 1996 17:04:36 %2B1030 References: <199612110627.XAA00240@obie.softweyr.com> <199612110634.RAA22676@genesis.atrad.adelaide.edu.au>
next in thread | previous in thread | raw e-mail | index | archive | help
> Tcpdump does all this and lots more; the filter language is pretty powerful. > > The fact that it knows how to interpret lots of protocols and that you > can extend it (courtesy of the source and an easy internal interface) > puts it over anyuthing else I've seen yet. Except for Solaris's snoop. The output is *SO* much nicer than tcpdumps. If you ever get a chance try snoop -v or snoop -V. -- -- David (obrien@cs.ucdavis.edu)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Mutt.19961211011156.obrien>