Here is a way to capture traffic with tshark and only get what the display filter is showing.
tshark -i 2 -f "port 110" -R "pop.request.parameter conatins "user"" > c:\port110.txt
*********************try "pop.request.command conatins "USER""*************
This will capture all port 110 traffic and filter out the "user" command line and save it to a txt file.
tshark -i 2 -f "port 25" -R "smtp.rsp.parameter contains "Sender"" > c:\port25.txt
This is an example of how to capture traffic on your outbound smtp server.
-i = interface
-f = capture filter
-R= display filter
Monday, October 29, 2007
Wednesday, October 17, 2007
How to mount a remote Windows share from Linux
1) Make sure you have following information:
==> Windows username and password to access share name
==> Sharename (such as //server/share) or IP address
==> root level access on Linux
2) Login to Linux as a root user (or use su or sudo)
3) Create the required mount point:# mkdir -p /mnt/ntserver
4) Use the mount command as follows:# mount -t cifs //ntserver/download -o username=vivek,password=myPassword /mnt/ntserver
Use following command if you are using Old version such as RHEL <=4 or Debian <= 3: # mount -t smbfs -o username=vivek,password=D1W4x9sw //ntserver/download /mnt/ntserver
5) Access Windows 2003/2000/NT share using cd and ls command:# cd /mnt/ntserver; ls -l
Where,
- -t smbfs : File system type to be mount (outdated, use cifs)
- -t cifs : File system type to be mount
- -o : are options passed to mount command, in this example I had passed two options. First argument is password (vivek) and second argument is password to connect remote windows box
- //ntserver/download : Windows 2000/NT share name
- /mnt/ntserver Linux mount point (to access share after mounting)
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
To have the share mount on startup do the following:
$ sudo kate /etc/fstab
add at the bottom of the file:
//ntserver/share /mnt/ntserver cifs username=user,paswsword=pass 0 0
>>>>>>>>>space>>>>>space>space>>>>>>>>>>>>>>>>>space>space
Note: make sure you hit enter a few times after your last line to avoid errors.
Now when you restart your machine you should be able to see the windows share by typing " ls /mnt/ntserver"
Thursday, October 4, 2007
Adept behind a Proxy
Credit - http://www.catnip.co.uk/projects/gnu/linux/usw/
Using Adept Behind a Proxy
If your machine is behind a proxy firewall, it is still possible to use Adept to keep the system up to date and to install further software. The way I did it was to create a file:
/etc/apt/apt.conf.d/proxy
by issuing the command:
sudo kwrite /etc/apt/apt.conf.d/proxy
and to place in it the details of the proxy as follows:
Acquire {
http {
Proxy "http://username:userpassword@191.168.1.1:8080";
};
};
Obviously replace username, userpassword, the IP address 191.168.1.1 and the port number 8080 with those applicable to the proxy you wish to access.
Subscribe to:
Posts (Atom)