tcpdump mailing list archives
about this mailing list
From: Michael Bernstein <mb_jobs () yahoo com>
Date: Wed, 11 Jun 2008 19:32:19 -0700 (PDT)
Hi everyone - I've been a member of the mailing list, but haven't had a chance to read all the articles. My main question is based on Libpcap and TCPdump, essential tools in network security analysis. My background in that I'm a CCIE Security, experience with MSSP performing security analysis on manly leading IDS/IPS platforms. I know that a big DDoS mitigation effort thru Verizon is based on TCPdump BPF filters. I think mainly all IPS/IDS are based on TCPdump filters and translation into IDS rules. What is it that this tcpdump-workers list aims at? What are you trying to achieve that TCPdump doesn't already address in the program? Thanks. Michael - This is the tcpdump-workers list. Visit https://cod.sandelman.ca/ to unsubscribe.
Current thread:
- about this mailing list Michael Bernstein (Jun 11)
- Re: about this mailing list Guy Harris (Jun 11)
- Re: about this mailing list Michael Bernstein (Jun 12)
- Re: about this mailing list Eloy Paris (Jun 12)
- Re: about this mailing list Guy Harris (Jun 12)
- Re: about this mailing list Michael Bernstein (Jun 13)
- Re: about this mailing list Jesse Kempf (Jun 13)
- Re: about this mailing list Michael Bernstein (Jun 12)
- Re: about this mailing list Guy Harris (Jun 11)