[Lunar-commits] CVS: moonbase/net/iplog DEPENDS, NONE, 1.1 DETAILS,
NONE, 1.1
Jon South
striker at lunar-linux.org
Sun Mar 7 01:07:12 GMT 2004
Update of /var/cvs/lunar/moonbase/net/iplog
In directory dbguin.lunar-linux.org:/tmp/cvs-serv8556
Added Files:
DEPENDS DETAILS
Log Message:
network connection logger similar to tcpdump (but prints less information) and has different uses (e.g. scan detection).
--- NEW FILE: DEPENDS ---
depends libpcap
--- NEW FILE: DETAILS ---
MODULE=iplog
VERSION=2.2.3
SOURCE=$MODULE-$VERSION.tar.gz
SOURCE_DIRECTORY=$BUILD_DIRECTORY/$MODULE-$VERSION
SOURCE_URL=$SFORGE_URL/ojnk/$SOURCE
SOURCE_VFY=md5:de98dd64018ab10ebe36e481cf00b7db
WEB_SITE=http://ojnk.sourceforge.net/
ENTERED=20040406
UPDATED=20040406
SHORT="iplog is a TCP/IP traffic logger similar to tcpdump"
cat << EOF
iplog is a TCP/IP traffic logger. Currently, it is capable of logging TCP,
UDP and ICMP traffic. Adding support for other protocols should be
relatively easy.
iplog's capabilities include the ability to detect TCP port scans, TCP null
scans, FIN scans, UDP and ICMP "smurf" attacks, bogus TCP flags (used by
scanners to detect the operating system in use), TCP SYN scans, TCP "Xmas"
scans, ICMP ping floods, UDP scans, and IP fragment attacks.
iplog is able to run in promiscuous mode and monitor traffic to all hosts on
a network.
iplog uses libpcap to read data from the network and can be ported to any
system that supports pthreads and on which libpcap will function.
More information about the Lunar-commits
mailing list