Ethereal-cvs: [Ethereal-cvs] cvs commit: ethereal packet-smb-sidsnooping.c packet-smb-sidsnoop

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

Date Index Thread Index Other Months All Mailing Lists
Date Prev Date Next Thread Prev Thread Next
From: Ronnie Sahlberg <sahlberg@xxxxxxxxxxxxxxxxxxx>
Date: Tue, 25 Mar 2003 03:41:45 -0600 (CST)
sahlberg    2003/03/25 03:41:44 CST

  Modified files:
    .                    Makefile.am Makefile.nmake packet-smb.c 
                         smb.h 
  Added files:
    .                    packet-smb-sidsnooping.c 
                         packet-smb-sidsnooping.h 
  Log:
  Added SMB option : sid_name_snooping.
  
  This feature, when enabled through Edit/preferences/protocols/smb,
  will look at certain SMB and CIFS related protocols to discover the
  mapping between SIDs and their Names.
  
  For those SIDs whose name has been snooped/discovered ethereal will
  also add "(<name>)" to the end of the SID when printed in the tree pane
  through the function dissect_nt_sid().
  
  Currently the feature is not too exciting since the only thing that packet-smb-sidsnooping.c will look at to build this mapping table is
  replies to the LSA/QueryInfoPolicy infolevel 3  packets and thus
  discover mappings between a Domain SID and a Domain Name.
  In the near future this future will be enhanced to also look at more interesting calls such as LSA/LookupSIDs2 and similar.
  
  Revision  Changes    Path
  1.569     +3 -1      ethereal/Makefile.am
  1.289     +2 -1      ethereal/Makefile.nmake
  1.315     +20 -3     ethereal/packet-smb.c
  1.50      +3 -1      ethereal/smb.h