Ethereal-dev: Re [Ethereal-dev] First version of LSA pipe dissector

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

Date Index Thread Index Other Months All Mailing Lists
Date Prev Date Next Thread Prev Thread Next
From: "R. Sahlberg" <sahlberg@xxxxxxxxxxxxxxxx>
Date: Mon, 17 Dec 2001 20:50:36 +1100
Hi list.

Tim, nice to see the Lsa updates.
I saw that it does not dissect SecurityDescriptors yet.

Please look in packet-smb.c, the code to do this is already (since a day or
two) in ethereal and is used
by NT Transaction and friends.
You could just call it from the LSA dissector.
I.e. a one line code add to LSA would allow it full SecurityDescriptor
dissection.
Nice, eh?

There is one more patch coming for the dissection of security descriptors in
packet-smb.c
which allows it to dissect the 16 flags bits in the header structure. The
patch is ready but I must transfer it to my desktop first.

Tim, or someone else, see
packet-smb.c  dissect_nt_sec_desc() , this function should be called from
prs_SECURITY_DESCRIPTOR in LSA and then the security descriptor will be
dissected as well.

best regards
    ronnie s
(note my new email address)