Hello :- )
1) The protocol (PVM)I'm writing the plugin for defines a 32-bit identifier
field:
:
+-------------------------------------------------------------------------+
| S| G| H | L |
+-------------------------------------------------------------------------+
H is a Host identifier.
Now, I've defined a heuristic in order to recognize PVM packets. What I'd
like to do is to improve it. That is because the heuristic can't recognize
all PVM packets.
This is due to the fact that the heuristic matches only a subset of
identifiers (those identifying daemons excluding those identitying Tasks
running on daemons).
PVM provides task identifiers in some messages being exchanged by daemons.
Now, the idea is to fetch these task identifiers, store them in a list and
then issue a check (if TaskID !isin List) return FALSE; )
But:
a) How can I create a list the can be searched during the whole
capture/dissection? (Something like GMemChunk?P.S. I still have to use it,
then I don't know that it's exactly for ; - ) )
b) Do you think it's a solid way of defining a heuristic? I don't because
'what If I start capturing after that Task-identifier-containing message has
been released'?
Maybe i'd better improve the static format-checking : )
2) What are conversations for? I've read they're useful both before capture
and before filtering. But in what sense, exactly?
Thank you : - D
_________________________________________________________________
Blocca le pop-up pubblicitarie con MSN Toolbar! http://toolbar.msn.it/