p0f 1.8.3 (fwd)

[Lance Spitzner <lance () honeynet org>]

A new version of p0f (a passive fingerprinting tool) has been
released.  This is an oustanding tool for automated fingerprinting
to network traffic (or connections made to your honeypot).

-- 
Lance Spitzner
http://www.tracking-hackers.com

---------- Forwarded message ----------
Date: Thu, 6 Feb 2003 23:25:39 -0500 (EST)
From: William Stearns <wstearns () pobox com>
Subject: p0f 1.8.3

Good evening, all,
        I've uploaded p0f 1.8.3 to http://www.stearns.org/p0f/ .  Sorry
for the long break between versions; the code is mostly stable and the
fingerprints have been occasional.

        Major changes (Changelog has the rest)

- Mysql support for fingerprints and detects. Aycan and Evrim provided
this code a while back - no complaints so far, although I'm not entirely
clear if the database support would get confused if new signatures are
added to the datbase.  Marion was kind enought to add a mysql quickstart
document.

- URLs for fingerprinting articles and sites.

- Windows port of 1.8.2 to cygwin/winpcap thanks to Chris Connelly (I hope
to get a 1.8.3 binary from him soon and it will go up to the same site
when ready).  Michael Davis has been discussing updating his (non-cygwin)
port to 1.8.x too; it's nice to have both options.

- and the usual new fingerprint entries.

        If you find problems, please let me know.  In particular, is 
anyone using p0f on Solaris?  Michal needs to know if Solaris has a 
daemon() function; someone submitted a daemonize command line option, but 
we need to know if the daemon() function used is available on Solaris.
        Cheers,