Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: snort and packet sniffing

From: Matt Kettler <mkettler () evi-inc com>
Date: Thu, 19 Aug 2004 13:59:03 -0400
At 11:35 AM 8/19/2004, Dean Price wrote:


I know of ethereal, tcpdump, and of course snort...

Another question for anyone on the list, I was informed that snort will also
show me the contents of an email message ( in source format ).
That's completely bogus information. snort has absolutely no capacity to do this kind of thing, and has no use for such a function. It's an IDS, not a mail-intercept tool. 

Perhaps you really wanted dsniff.
Be aware of the legalities of your actions however, in some places capturing email contents like that could be considered a wiretap and subject to various laws about notifying affected parties of the capture of data. I'm not a lawyer, so my advice is just suggest you should check up on your local laws to CYA. 






-------------------------------------------------------
SF.Net email is sponsored by Shop4tech.com-Lowest price on Blank Media
100pk Sonic DVD-R 4x for only $29 -100pk Sonic DVD+R for only $33
Save 50% off Retail on Ink & Toner - Free Shipping and Free Gift.
http://www.shop4tech.com/z/Inkjet_Cartridges/9_108_r285
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: