From owner-freebsd-security  Mon May 24 21:11:19 1999
Delivered-To: freebsd-security@freebsd.org
Received: from henry.cs.adfa.edu.au (henry.cs.adfa.edu.au [131.236.21.158])
	by hub.freebsd.org (Postfix) with ESMTP id 2F33E15063
	for <security@freebsd.org>; Mon, 24 May 1999 21:11:14 -0700 (PDT)
	(envelope-from wkt@henry.cs.adfa.edu.au)
Received: (from wkt@localhost)
	by henry.cs.adfa.edu.au (8.9.2/8.9.1) id OAA03063
	for security@freebsd.org; Tue, 25 May 1999 14:11:08 +1000 (EST)
	(envelope-from wkt)
From: Warren Toomey <wkt@henry.cs.adfa.edu.au>
Message-Id: <199905250411.OAA03063@henry.cs.adfa.edu.au>
Subject: Location of TCP/UDP packet suckers
To: security@freebsd.org
Date: Tue, 25 May 1999 14:11:08 +1000 (EST)
Reply-To: wkt@cs.adfa.edu.au
X-Mailer: ELM [version 2.4ME+ PL43 (25)]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Well, I got a large response back from my offer of a TCP connection logger.
Yes, I should have just offered the URL straightaway! You can get the source
at:

ftp://minnie.cs.adfa.edu.au/pub/NetSecurity/pktsuckers.tar.gz

They were last modified January 1996. I could think of some extra
functionality, e.g to ignore broadcast UDP packets, or packets from
the local subnet, but I haven't bothered.

Hope you find them useful. They compile under FreeBSD 3.x, and should
be easily ported to most other Unix flavours.

Cheers,
	Warren


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message