nanog mailing list archives
Re: PCAP Sanitization Tool
From: Steven Bellovin <smb () cs columbia edu>
Date: Thu, 17 Jun 2010 06:49:55 -0700
On Jun 17, 2010, at 6:46 51AM, Valdis.Kletnieks () vt edu wrote:
On Wed, 16 Jun 2010 18:37:01 PDT, Steven Bellovin said:What's your threat model? In general, proper anonymization of packet trace data is very hard.I'll go out on a limb and point out that a large chunk of the difficulty is because every protocol has had to invent its own hack-arounds for working across a NAT. The resulting lack of standardization making things like Wireshark protocol examinations and sanitizing capture data is one of the less well-known reasons why NATs are evil.
My complaints are at a deeper level -- even without that, it's really hard. --Steve Bellovin, http://www.cs.columbia.edu/~smb
Current thread:
- PCAP Sanitization Tool Bein, Matthew (Jun 16)
- Re: PCAP Sanitization Tool Michael Collins (Jun 16)
- Re: PCAP Sanitization Tool kowsik (Jun 16)
- Re: PCAP Sanitization Tool Sebastian Castro (Jun 16)
- Re: PCAP Sanitization Tool Valdis . Kletnieks (Jun 17)
- Re: PCAP Sanitization Tool Steven Bellovin (Jun 16)
- Re: PCAP Sanitization Tool Valdis . Kletnieks (Jun 17)
- Re: PCAP Sanitization Tool Steven Bellovin (Jun 17)
- Re: PCAP Sanitization Tool Valdis . Kletnieks (Jun 17)
- Re: PCAP Sanitization Tool travis abrams (Jun 16)
- Re: PCAP Sanitization Tool jul (Jun 19)
- RE: PCAP Sanitization Tool Delgado,Rodolfo (Jun 21)
- Re: PCAP Sanitization Tool Michael Collins (Jun 16)