Snort mailing list archives

Tcpdump full conversation capture

From: Court Graham <court.computersecurity () gmail com>
Date: Wed, 28 Sep 2005 13:45:41 -0700

All,
  I have been performing binary packet captures with tcpdump for use in a
snort signature!
 ( tcpdump -w "file" host x.x.x.x )
 This string does not capture the full conversation. Does anyone know the
switch that will enable this functionality!

Current thread:

Tcpdump full conversation capture Court Graham (Sep 28)
- Re: Tcpdump full conversation capture Joel Esler (Sep 28)
- RE: Tcpdump full conversation capture Patrick Harper (Sep 28)