I regularly whiten my data, yet leave it in a somewhat sensible format. The victin, unfortunately, is on a publicly acessible ip range. I would lose my job, and most likely my freedom, if I were to divulge the victim's identity. You will notice that none of the checksums hold water, either. In the future, I'll be sure to include the label "whitened dump data" along with my post. On 17 Apr 01, at 8:58, Daniel Martin wrote: > Something odd is going on here: this appears to be the packet dump of > a UDP packet going from 10.1.53.13:1041 -> 255.255.255.255:54322, not > what the tcpdump header says. Did you do something unusual in your > packet capture?
This archive was generated by hypermail 2b30 : Tue Apr 17 2001 - 13:16:50 PDT