Wireshark · Ethereal-dev: [Ethereal-dev] heuristics using l7-filter?

Ethereal-dev: [Ethereal-dev] heuristics using l7-filter?

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: Thomas Anders <thomas.anders@xxxxxxxxxxxxx>

Date: Sun, 26 Feb 2006 00:47:33 +0100

With the move towards new-style dissectors there always seems to be acommon problem of coming up with good heuristics to tell from a fewbytes whether the chunk is likely the protocol in question (or not).

Is there a good reason to reinvent the wheel here and *not* considerusing existing pattern definitions like those of e.g. the l7-filterproject (http://l7-filter.sourceforge.net/technicaldetails)?



Just an idea,
+Thomas

--
Thomas Anders (thomas.anders at blue-cable.de)

Prev by Date: Re: [Ethereal-dev] What to do with ethereal-tut.mgp
Next by Date: [Ethereal-dev] error in a simple dissector of DSR
Previous by thread: Re: [Ethereal-dev] What to do with ethereal-tut.mgp
Next by thread: [Ethereal-dev] error in a simple dissector of DSR
Index(es):
- Date
- Thread