freedman@euclid.math.temple.edu (Avi Freedman) (12/18/89)
Does anyone know of code that allows a Sun 3/60 or 4/280 running SunOS 4.X to capture all packets running by it? What I'd like is a source for a program like etherfind (presumably using NIT or some other way to get at the Ethernet packets in promiscuos mode) and has a hook for processing a packet. I've Read The Fine Manual on NIT(4), and if I have to, I'll write such a piece of code myself, but if someone else has it, that would be great... :-) While I realize that this opens up a tremendous security hole, one _does_ have to have root access to use it, and networks _should_ be isolated by bridges, gateways, or what have you, so that LAT passwords to accounts on CIS machines aren't flowing past the math network (unless there is an rlogin or such from the math network). Besides, if one wanted to look at all traffic seriously enough, one could just bring in a portable PC with an Ethernet card and run Netwatch or one of the PC programs that lets you see the whole packet also. Needless to say, any help (even if it is just pointing to code which uses NIT and might be helpful) would be appreciated. If there is any interest in the replies that I get, I will post a summary. Thanks, Avi Freedman freedman@euclid.math.temple.edu