Wireshark mailing list archives

Re: Yum install centos 5.2

From: Guy Harris <guy () alum mit edu>
Date: Sun, 11 Oct 2009 16:12:14 -0700


On Oct 11, 2009, at 3:07 PM, Mike Brandonisio wrote:

I'm seeing what looks like encoded traffic.

\027\003\001\000

Any thoughts on how it is encoded?


Is this on port 25?  If so, it *might* be SMTP-over-TLS:

        http://tools.ietf.org/html/rfc2487

although I think newer versions of Wireshark/TShark should recognize  
the STARTTLS command and dissect traffic following it as TLS.
___________________________________________________________________________
Sent via:    Wireshark-users mailing list <wireshark-users () wireshark org>
Archives:    http://www.wireshark.org/lists/wireshark-users
Unsubscribe: https://wireshark.org/mailman/options/wireshark-users
             mailto:wireshark-users-request () wireshark org?subject=unsubscribe

Current thread:

Re: Yum install centos 5.2, (continued)
- - - Re: Yum install centos 5.2 Guy Harris (Oct 11)
    - Re: Yum install centos 5.2 Mike Brandonisio (Oct 11)
    - Re: Yum install centos 5.2 Mike Brandonisio (Oct 11)
    - Re: Yum install centos 5.2 Mike Brandonisio (Oct 12)
    - Re: Yum install centos 5.2 Guy Harris (Oct 12)
    - Re: Yum install centos 5.2 Mike Brandonisio (Oct 12)
    - Re: Yum install centos 5.2 Mike Brandonisio (Oct 14)
    - Re: Yum install centos 5.2 Jeffrey Walton (Oct 14)
    - Re: Yum install centos 5.2 Mike Brandonisio (Oct 14)
    - Re: Yum install centos 5.2 Mike Brandonisio (Oct 11)
    - Re: Yum install centos 5.2 Guy Harris (Oct 11)
    - Re: Yum install centos 5.2 Mike Brandonisio (Oct 11)
    - Re: Yum install centos 5.2 Mike Brandonisio (Oct 11)