FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

Port details
smbtcpdump Tcpdump(1) hacked to better understand SMB packets
3.4 net Deleted on this many watch lists=1 search for ports that depend on this port Find issues related to this port Report an issue related to this port
Maintainer: obrien@FreeBSD.org search for ports maintained by this maintainer
Port Added: unknown
Also Listed In: security
License: not specified in port
tcpdump(1) hacked to better understand SMB packets. 
smbtcpdump gives the ability to interpret NBT and SMB packets in a fair bit
of detail.

To capture all SMB packets going to or from host "fred" try this:

	tcpdump -s 1500 'port 139 and host fred'

If you want name resolution or browse packets then try ports 137 and
138 respectively:

	tcpdump -s 1500 '(port 139 or 138 or 137) and host fred'

Example Output:

Here is a sample of a capture of a "SMBsearch" directory search. If
you don't get output that looks like this then smbtcpdump is not working
correctly.

NBT Session Packet
Flags=0x0
Length=57

SMB PACKET: SMBsearch (REQUEST)
SMB Command   =  0x81
Error class   =  0x0
Error code    =  0
Flags1        =  0x8
Flags2        =  0x3
Tree ID       =  2048
Proc ID       =  11787
UID           =  2048
MID           =  11887
Word Count    =  2
smbvwv[]=
Count=98
Attrib=HIDDEN SYSTEM DIR 
smbbuf[]=
Path=\????????.???
BlkType=0x5
BlkLen=0
SVNWeb : PortsMon

No installation instructions: this port has been deleted.

The package name of this deleted port was:

PKGNAME:

distinfo: There is no distinfo for this port.

There are no ports dependent upon this port


Configuration Options
     No options to configure

Master Sites:
  1. ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/distfiles/
  2. ftp://ftp.ee.lbl.gov/
  3. ftp://ftp.uu.net/networking/ip/trace/tcpdump/

Number of commits found: 4

Commit History - (may be incomplete: see SVNWeb link above for full details)
DateByDescription
08 May 2002 20:55:15
Original commit files touched by this commit  3.4
obrien search for other commits by this committer
Remove smbtcpdump.  AFAIK all this functionality is now in the offical
tcpdump.  If it isn't, someone should work with tcpdump.org to get it in.
08 May 2002 20:54:08
Original commit files touched by this commit  3.4
obrien search for other commits by this committer
To ports@freebsd.org.
22 Nov 2000 00:57:34
files touched by this commit
obrien search for other commits by this committer
Add $FreeBSD$, which help me in problem reports.    
08 Oct 2000 07:19:09
files touched by this commit
asami search for other commits by this committer
Convert category net to new layout.  

Number of commits found: 4

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
Issues
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
krb5-113*Jul 26
krb5-114*Jul 26
php55Jul 26
php55-bz2Jul 26
php55-exifJul 26
php55-gdJul 26
php55-odbcJul 26
php55-snmpJul 26
php55-xmlrpcJul 26
php55-zipJul 26
php56Jul 26
php56-bz2Jul 26
php56-exifJul 26
php56-gdJul 26
php56-odbcJul 26

19 vulnerabilities affecting 59 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds

Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 26085
Broken 82
Deprecated 123
Ignore 353
Forbidden 0
Restricted 201
No CDROM 83
Vulnerable 69
Expired 10
Set to expire 110
Interactive 0
new 24 hours 2
new 48 hours8
new 7 days28
new fortnight51
new month166

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.