Ethereal-dev: Re: [Ethereal-dev] MAPI capture sample on ethereal website

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

Date Index Thread Index Other Months All Mailing Lists
Date Prev Date Next Thread Prev Thread Next
From: "Ronnie Sahlberg" <sahlberg@xxxxxxxxxxxxxxxx>
Date: Sat, 22 Jun 2002 01:11:56 +1000
Hi,

Be aware that the MAPI support is currently extremely limited.
Basically limited to a few function names and some of the parameters for
Logon and Logoff.
It is not really too useful right now.

I did not find any proper documentation on MAPI and reverse engineering
showed to be more
work than first expected.
Basically, the interesting data is not marshalled in NDR encoding (which
would make it easy to read)
nor is it obvious what fields/aggregates that data contain. :-(
I did not have the time required to continue looking at it and got
distracted with more immediate needs.

If you are interested in generating traffic and reverse engineering the
protocol I may be interested in
assisting you with this task.


----- Original Message -----
From: "Devin Heitmueller"
Sent: Thursday, June 20, 2002 8:01 AM
Subject: [Ethereal-dev] MAPI capture sample on ethereal website


> Has anyone noticed that the MAPI sample capture on the Ethereal website
> is invalid?  The trace doesn't appear to include the DCE/RPC bind
> request, so Ethereal doesn't know to use the sahlberg's dissector on the
> session.
>
> The only reason I mention it is because I spent half an hour trying to
> figure out why the MAPI dissector wasn't working, only to find the trace
> was invalid.
>
> --
> Devin Heitmueller
> Senior Software Engineer
> Netilla Networks Inc
>
>
> _______________________________________________
> Ethereal-dev mailing list
> Ethereal-dev@xxxxxxxxxxxx
> http://www.ethereal.com/mailman/listinfo/ethereal-dev