08-17-2006
It's simple to capture packets and store it's headers in BerkeleyDB with secondary dbs etc., but it's a lot of work to make some interface to serach for information in this db
7 More Discussions You Might Find Interesting
1. UNIX for Advanced & Expert Users
We are using c2 / enhanced security on digital unix.
I do not have access to the GUI.
I need to get information on login status for users. Specifically I would like to know who has not logged in within the last 6 months.
I think I can query the edauth files, but I can't find information on... (4 Replies)
Discussion started by: MizzGail
4 Replies
2. Solaris
Hello;
I am moving a customer from Solaris 2.6 to Solaris 2.8. The customer has requested the following two requirements also be implemented:
1. Lock a user account out for X number of days after 3 unsuccessful login attempts.
2. No reuse of the last 5-10 passwords. Also referred to... (1 Reply)
Discussion started by: rambo15
1 Replies
3. UNIX for Advanced & Expert Users
for sco, hp, or AIX......
anyway, how can I secure the UNIX system.
I knew that CA has it's products for securing the UNIX server system.
Please tell me more about other vender, and their products
thxs! (0 Replies)
Discussion started by: brookwk
0 Replies
4. Shell Programming and Scripting
Dear
I have a problem on which I turn araound since hours.
Hope you could help me.
I have a bash script, which activates with "nohup ./script2 params & " several subscripts.
In my main script, I have set lot's of variables, which I would pass into script 2.
My idea is now to create a... (3 Replies)
Discussion started by: pramach
3 Replies
5. UNIX for Dummies Questions & Answers
Hi. I guess this my dummy question is for super-gurus.
I'm on Red Hat' documentation regarding their RDMA capabilities over "convergent" Ethernet network. I read everything that I could find on inet, wikipedia etc. about the technology itself. I can't figure out, how can I determine if the... (0 Replies)
Discussion started by: newlinuxuser1
0 Replies
6. AIX
Hi All,
I am going to perform some activity in 2Node HA Server(Active/Passive).
For that i have to do some pre-requsite (ie., Resource Group VG's should be Enhanced-Concurrent)
In my setup, we have two volume groups in one RG. In that one VG is Normal and another is Enhance Concurrent.
... (2 Replies)
Discussion started by: Thala
2 Replies
7. What is on Your Mind?
Dear All,
Thank you for your support. As promised I have upgrade features for unix.com forum VIP members as follows:
Who's Online Permissions
Can View IP Addresses
Can View Detailed Location Info for Users
Can View Detailed Location Info of Users Who Visit Bad / No Permission... (0 Replies)
Discussion started by: Neo
0 Replies
LEARN ABOUT DEBIAN
pcapdump
pcapdump(1) pcapdump(1)
NAME
pcapdump - dedicated packet capture utility
SYNOPSIS
pcapdump [OPTIONS]...
DESCRIPTION
pcapdump captures packets from a network interface and writes them to a dumpfile. The filename argument given to -w will be formated by
strftime(3).
PCAPNET OPTIONS
-i interface
Input interface to read packets from.
-r pcap file
Dump file to read packets from.
-w pcap file
Dump file to write filtered packets to.
-f expression
BPF expression which selects packets to be filtered.
-s snaplen
Capture snaplen bytes of data from each packet.
-p Disable promiscuous mode sniffing.
PROGRAM OPTIONS
-u owner
Set the output file's owning user to owner.
-g group
Set the output file's owning group to group.
-m mode
Set the output file's mode to mode, specified in octal.
-t secs
Dump file rotation interval in seconds.
-c count
Exit after capturing count packets.
-T secs
Exit after capturing during this amount of seconds.
-H Only capture link, network, and transport headers; do not capture application-layer data.
-S sample value
Sample the packet stream by only dumping 1 in every sample value packets.
-R Together with -S, sample the packets randomly, not systematically.
-P pidfile
Daemonize the process and write its PID to pidfile.
-C config file
File to read configuration variables from. Instead of passing configuration through the command line, a file can be used to specify
values for the bpf, device, filefmt, group, interval, mode, owner, promisc, and snaplen options (not all need to be specified; de-
faults will be used otherwise). See /usr/share/doc/pcaputils/examples/pcapdump/eth0 for an example.
9 May 2009 pcapdump(1)