Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: How to decipher tcpdump file
Special Forums Cybersecurity How to decipher tcpdump file Post 63405 by diganta on Thursday 24th of February 2005 10:55:23 PM
Old 02-24-2005
tcpdump tut for beginners
Following is a very good link to understand tcpdump for beginners.

http://www.aei.ca/~pmatulis/pub/tcpdump.html
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

TCPDump Binary File......

I have a file on a linux box with the extension .gz thats supposed to be a gzip file. when i use gzip -d filename it gives me squares and triangles and you know garbarge. Its a 900 meg file. Is there someway to decode the file and where could I store a 900 meg file for free???? I am going to... (8 Replies)
Discussion started by: pydyer
8 Replies

2. UNIX for Dummies Questions & Answers

Please help me decipher this header - I'm desperate!

I've got a really weird situation here.... the same IP address keeps popping up in porn spam that I have rec'd in 2 different email accts. It looks to me like it's coming from UC Davis, and I suspect someone there, so I am hoping you all can verify the same thing before I call the person on this... (0 Replies)
Discussion started by: christinef
0 Replies

3. Shell Programming and Scripting

Help with script, trying to get tcpdump and rotate the file every 300 seconds

Greetings, I just started using scripting languages, im trying to get a tcpdump in a file, change the file name every 5mins ... this is what i have but its not working ... any suggestions? #!/bin/bash # timeout.sh #timestamp format TIMESTAMP=`date -u "+%Y%m%dT%H%M%S"` #tdump =`tcpdump... (3 Replies)
Discussion started by: livewire
3 Replies

4. HP-UX

help me decipher how much memory on my box

hi, if I do top, I get Memory: 19277012K (5868296K) real, 33860312K (11294208K) virtual, 795392K free If I do swapinfo -tm I get: % swapinfo -tm Mb Mb Mb PCT TYPE AVAIL USED FREE USED dev 16384 0 16383 0% dev ... (3 Replies)
Discussion started by: JamesByars
3 Replies

5. IP Networking

tcpdump -w file is not capturing all the packets

I am trying to capture tcpdump for traffic to a port in a file but this does not seem to capture all the packets. Command I use is : tcpdump -w tdump.dat port 22 Why is it not capturing all the packets ? Here is my experiment: root@pmode-client6 adc-demo]# tcpdump port 22 tcpdump:... (5 Replies)
Discussion started by: radiatejava
5 Replies

6. Shell Programming and Scripting

Decipher Script

Hi Guys, I am running solaris and I need help in deciphering the following commands: dir_t1=`echo $0|nawk -F'/' '{print NF}'` dir_t2=`expr $dir_t1- 1` dir_t3=`echo $0|cut -d'/' -f1-$dir_t2` export dir_t2 What will be the value for dir_t3? Please help !!!!!!!!!!!!!!! (5 Replies)
Discussion started by: Phuti
5 Replies

7. Shell Programming and Scripting

Sed - Unable to decipher this.

Guys, I am going through an existing code in production and found the following lines. I have used "sed" before but am unable to decipher the following statement. :( echo ${F_NAME} | sed 's/\(.*\)............/\1/' Any help is greatly appreciated. Cheers, Sid (6 Replies)
Discussion started by: sid1982
6 Replies

8. UNIX for Advanced & Expert Users

ssh decipher a tunnel

Two question here, but it's only one on the protocol point of view. If two persons use the same key to connect to a SSH server is there a risk they can decipher the other tunnel. In other terms is that less safe than if they have two separate keys. Same question if two persons use the same user... (2 Replies)
Discussion started by: moi
2 Replies

9. Shell Programming and Scripting

Can you decipher this script ?

ssh-add -t 30 >/dev/null 2>&1 LOGNAME=`whoami` cp $HOME/.ssh/known_hosts $HOME/.ssh/known_hosts.org grep -v localhost $HOME/.ssh/known_hosts.org > $HOME/.ssh/known_hosts ssh -1 -f -l $LOGNAME -o "ForwardX11 yes" -o "StrictHostKeyChecking no" -L 6003:1.1.1.1:2222 ext-proxy-2 sleep 5... (1 Reply)
Discussion started by: llcooljatt
1 Replies

10. SuSE

can you decipher this script ?

ssh-add -t 30 >/dev/null 2>&1 LOGNAME=`whoami` cp $HOME/.ssh/known_hosts $HOME/.ssh/known_hosts.org grep -v localhost $HOME/.ssh/known_hosts.org > $HOME/.ssh/known_hosts ssh -1 -f -l $LOGNAME -o "ForwardX11 yes" -o "StrictHostKeyChecking no" -L 6003:195.244.210.107:2222 ext-proxy-2 sleep 5... (7 Replies)
Discussion started by: llcooljatt
7 Replies

LEARN ABOUT DEBIAN

dpkg-repack

DPKG-REPACK(1)						      General Commands Manual						    DPKG-REPACK(1)

NAME

       dpkg-repack - put an unpacked .deb file back together

SYNOPSIS

       dpkg-repack [--root=dir] [--arch=architecture] [--generate] packagename [packagename ...]

DESCRIPTION

       dpkg-repack creates a .deb file out of a Debian package that has already been installed on your system.

       If any changes have been made to the package while it was unpacked (ie, conffiles files in /etc modified), the new package will inherit the
       changes. (There are exceptions to this, including changes to configuration files that are not conffiles, including those managed by ucf.)

       This utility can make it easy to copy packages from one computer to another, or to recreate packages that are installed on your system, but
       no longer available elsewhere.

       Note: dpkg-repack will place the created package in the current directory.

OPTIONS

       --root=dir
	      Take  package  from  filesystem rooted on <dir>. This is useful if, for example, you have another computer nfs mounted on /mnt, then
	      you can use --root=/mnt to reassemble packages from that computer.

       --arch=architecture
	      Make the package be for a different architecture.  dpkg-repack cannot tell if an installed package is architecture all  or  is  spe-
	      cific to the system's architecture, so by default it uses dpkg --print-architecture to determine the build architecture. If you know
	      the package is architecture all, you can use this option to force dpkg-repack to use the right architecture.

       --generate
	      Generate a temporary directory suitable for building a package from, but do not actually create the package. This is useful  if  you
	      want to move files around in the package before building it. The package can be built from this temporary directory by running "dpkg
	      --build", passing it the generated directory.

       packagename
	      The name of the package to attempt to repack. Multiple packages can be listed.

BUGS

       This program accesses the dpkg database directly in places, querying for data that cannot be gotten via dpkg.

       There is a tricky situation that can occur if you dpkg-repack a package that has modified conffiles. The modified conffiles are packed  up.
       Now  if	you  install the package, dpkg does not realize that the conffiles in it are modified. So if you later upgrade to a new version of
       the package, dpkg will believe that the old (repacked) package has older conffiles than the new version,  and  will  silently  replace  the
       conffiles with those in the package you are upgrading to.

       While dpkg-repack can be run under fakeroot and will work most of the time, fakeroot -u must be used if any of the files to be repacked are
       owned by non-root users. Otherwise the package will have them owned by root.  dpkg-repack will warn if you run it  under  fakeroot  without
       the -u flag.

AUTHOR

       Joey Hess <joeyh@debian.org>

DEBIAN
								 Debian Utilities						    DPKG-REPACK(1)
All times are GMT -4. The time now is 03:15 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy