Honeypots mailing list archives
p0f 1.8.3 (fwd)
From: Lance Spitzner <lance () honeynet org>
Date: Fri, 7 Feb 2003 10:07:53 -0600 (CST)
A new version of p0f (a passive fingerprinting tool) has been released. This is an oustanding tool for automated fingerprinting to network traffic (or connections made to your honeypot). -- Lance Spitzner http://www.tracking-hackers.com ---------- Forwarded message ---------- Date: Thu, 6 Feb 2003 23:25:39 -0500 (EST) From: William Stearns <wstearns () pobox com> Subject: p0f 1.8.3 Good evening, all, I've uploaded p0f 1.8.3 to http://www.stearns.org/p0f/ . Sorry for the long break between versions; the code is mostly stable and the fingerprints have been occasional. Major changes (Changelog has the rest) - Mysql support for fingerprints and detects. Aycan and Evrim provided this code a while back - no complaints so far, although I'm not entirely clear if the database support would get confused if new signatures are added to the datbase. Marion was kind enought to add a mysql quickstart document. - URLs for fingerprinting articles and sites. - Windows port of 1.8.2 to cygwin/winpcap thanks to Chris Connelly (I hope to get a 1.8.3 binary from him soon and it will go up to the same site when ready). Michael Davis has been discussing updating his (non-cygwin) port to 1.8.x too; it's nice to have both options. - and the usual new fingerprint entries. If you find problems, please let me know. In particular, is anyone using p0f on Solaris? Michal needs to know if Solaris has a daemon() function; someone submitted a daemonize command line option, but we need to know if the daemon() function used is available on Solaris. Cheers,
Current thread:
- p0f 1.8.3 (fwd) Lance Spitzner (Feb 07)