Wireshark-dev: Re: [Wireshark-dev] SMTP: Extracting parametrs

From: "goitom kahsay" <goitom.mit2@xxxxxxxxx>
Date: Sat, 17 May 2008 20:48:43 +0300
Hi steve,

Thank u very much for ur help.

I read all u recommend me and it is very important.

It is also  the best place to display these values in the Export object feature.But i have difficulty gathering the  contents of an e-mail. So can u help me any idea on how to gather these values(FROM,TO,SUBJECT,DATE) from the packet-smtp.c dissector.

Any idea is most appriciated.

Thank u in advance.
with best regards.

On Thu, May 1, 2008 at 9:49 AM, Stephen Fisher <stephentfisher@xxxxxxxxx> wrote:
On Thu, May 01, 2008 at 09:27:06AM +0300, goitom kahsay wrote:

> I want to display these values(the SMTP parameters such as
> FROM,TO,SUBJECT,DATE) in a *new dialog* under the analyze menu. And
> the dialog displays these values from each SMTP packets displayed in
> the packet list pane.

If the contents of the e-mails are gathered also, the best place to
display this information is probably via the Export Object feature (File
- Export - Object menu).  The only object export implemented so far is
HTTP.  See gtk/export_object.c, gtk/export_object_http.c and a small
piece in epan/dissectors/packet-http.c for how this is implemented.
Hint: It uses the tap mechanism to pass the information from the
dissector to the export object dialog.


Steve

_______________________________________________
Wireshark-dev mailing list
Wireshark-dev@xxxxxxxxxxxxx
http://www.wireshark.org/mailman/listinfo/wireshark-dev



--
Benice2all