summaryrefslogtreecommitdiffstats
path: root/usr.sbin/tcpdump (follow)
Commit message (Collapse)AuthorAgeFilesLines
...
* Only allow root to run tcpdump. It's needed for the chroot security.otto2005-09-231-30/+24
| | | | ok moritz@ deraadt@
* Fix a reliability issue where an over-read of 4 bytes could result in thecloder2005-08-281-5/+12
| | | | | | | tcpdump process being terminated when tcpdump running with -vv tries to print a a short IKE SA payload. Specifically OK'd for 3.8 release by deraadt@. OK canacar@, hshoexer@.
* recognize both versions of the nat-t-draft v2 vendor IDshshoexer2005-07-121-1/+8
| | | | ok ho@
* proto is `ip6', not `ipv6';jmc2005-07-081-3/+3
| | | | | initial report from robert hansen; confirmed by otto@
* some more ike payload typeshshoexer2005-06-282-6/+20
| | | | ok ho@
* add missing error check for decode_prefix4. ok deraadt@moritz2005-06-141-2/+8
|
* add ike encap types UDP_ENCAP_TUNNEL and UDP_ENCAP_TRANSPORThshoexer2005-06-061-2/+3
|
* Add SA replay counter synchronization to pfsync(4). Required for IPsecho2005-05-281-2/+11
| | | | failover gateways. ok mcbride@, "looks good" hshoexer@
* support decapsulation of 802.11 data framesreyk2005-05-283-8/+43
| | | | ok canacar@
* log two pairs of uid/pid through pflog: the uid/pid of the process thatdhartmei2005-05-271-2/+13
| | | | | | | | | inserted the rule which causes the logging. secondly, the uid/pid of the process in case the logged packet is delivered to/from a local socket. a lookup of the local socket can be forced for logged packets with a new option, 'log (user)'. make tcpdump print the additional information when -e and -v is used. note: this changes the pflog header struct, rebuild all dependancies. ok bob@, henning@.
* more missing bounds checks. ok marius@ deraadt@moritz2005-05-241-2/+13
|
* add some missing bounds checks. ok marius@moritz2005-05-231-2/+5
|
* Call endpwent() _after_ we're done with the struct passwd fields.otto2005-05-231-2/+2
| | | | ok canacar@
* correct comments and function namens to reflect new parent/childmoritz2005-05-222-49/+49
| | | | situation. suggested by and ok otto@
* fix signal race in statistics output. ok cloder@ henning@moritz2005-05-223-51/+37
|
* recognize more ike payload typeshshoexer2005-05-181-13/+11
| | | | ok cloder ho
* more setres[ug]id; ok deraadt@djm2005-05-031-25/+13
|
* Fix a potential infinite loop that could be triggered by an invalid BGPcloder2005-04-271-8/+21
| | | | | packet. Partially from tcpdump.org, with additional paranoia added so that the problem is actually fixed. OK deraadt, otto
* sync up, add some missing typesbrad2005-04-241-28/+90
|
* fix signal race by removing STATE_QUIT completely.moritz2005-04-201-7/+8
| | | | help and ok otto@ canacar@
* tcpdump developers are uncautious retards, plain and simple; ok ottoderaadt2005-04-111-5/+5
|
* do not forget to call endpwent(). ok moritz@otto2005-04-101-1/+2
|
* reduce the set of allowed actions in the privileged partmoritz2005-04-101-4/+44
| | | | | | depending on the arguments supplied to tcpdump. ok otto@, canacar@
* remove trailing \n in errx().moritz2005-03-301-2/+2
| | | | ok deraadt@
* output final summary to stderr instead of stdout,moritz2005-03-301-5/+5
| | | | | so it won't get mixed when tcpdump -w - is used. ok henning@ deraadt@
* simplify state engine, the old one was very confusing and wrong too.otto2005-03-261-22/+42
| | | | ok moritz@ "just get this in" deraadt@
* whitespacemoritz2005-03-252-8/+8
|
* whitespaceotto2005-03-251-1/+1
|
* clean up printing of rule numbers. omit ruleset name and sub-rule numberdhartmei2005-03-111-14/+18
| | | | | when irrelevant. print 'def' for default rule. omit numerical reason if description is printed. ok henning@, deraadt@
* simplification; ok reykderaadt2005-03-091-14/+6
|
* make this compile on strict-alignment architectures. someone sendderaadt2005-03-081-2/+3
| | | | reyk a sparc64 please!
* add a printer for 802.11 and for additional radiotap headers,reyk2005-03-075-8/+689
| | | | | | use -y IEEE802_11 or IEEE802_11_RADIO if supported by the driver. ok canacar@
* - do not mark up punctuationjmc2005-03-061-12/+13
| | | | | - use full "For example:" instead of "e.g.," where the latter looks too awful - no need to use Ns before `.'
* uppercase takes precedence over lower when sorting options;jmc2005-03-062-37/+37
|
* add support for multiple DLTs using the -L and -y options.reyk2005-03-065-37/+168
| | | | ok canacar@
* decode ike modp_2048 payloadhshoexer2005-03-031-2/+3
| | | | ok cloder ho
* Fix indentation as to not mislead the code reader. No functional change.aaron2005-02-171-4/+3
|
* Recognize RFC 3947 NAT-T VID. hshoexer@ okho2005-02-151-1/+8
|
* update `dst port', `ip proto', `ether proto', and SEE ALSO;jmc2005-02-041-13/+41
| | | | ok mcbride@
* although arguments to `ip proto' and `ether proto' are keywords, and dojmc2005-01-221-9/+7
| | | | | | | | | need to be escaped, they are not shell keywords; this wording seems to have been introduced when the page was mdoc'd; it now matches (more or less) how it was, and {F,N}BSD pages; found by naddy@
* "bad-timestamp" is a valid logging reason;jmc2005-01-021-2/+2
| | | | from joel knight;
* Add support for displaying Shared Spanning Tree Protocol frames, a minorpascoe2004-12-202-8/+36
| | | | | | variation on 802.1d/STP. ok otto@ mcbride@
* use strchr instead of indexderaadt2004-12-191-4/+4
|
* permit protocol name longer than 3 letters. canacar okitojun2004-12-131-3/+3
|
* print ipv6 on enc0, too; ok otto, tests by friesmarkus2004-11-171-6/+14
|
* implement -q for icmp, deregister, print usigned values using an unsignedotto2004-10-171-26/+29
| | | | format. ok markus@
* print ip_len for -v; ok otto, hshoexer, henningmarkus2004-10-151-2/+4
|
* When printing attributes do not cast unsigned value to signed.hshoexer2004-10-071-3/+3
| | | | | ok & help otto ok deraadt henning markus
* print th_seq from truncated tcp headers (e.g. in icmp need-frag)markus2004-09-161-2/+5
|
* add -T tcp to enforce interpretation as TCPmarkus2004-09-164-8/+14
|
Copyright © 1996 – 2023 Jason A. Donenfeld. All Rights Reverse Engineered.