aboutsummaryrefslogtreecommitdiffstats
path: root/packet-smb-sidsnooping.c
AgeCommit message (Collapse)AuthorFilesLines
2003-12-02From Didier Gautheron: put an "fvalue_t" structure into a "field_info"Guy Harris1-8/+8
structure, rather than separately allocating "fvalue_t"s and having the "field_info" structure point to them - this appears to speed up protocol tree construction a bit. svn path=/trunk/; revision=9146
2003-06-09SID name mappings can now be presented in a table by tetherealRonnie Sahlberg1-7/+3
using the -z smb,sids command argument. svn path=/trunk/; revision=7816
2003-06-05fix to make the dcerpc_smb_fetch_pol use the new function argument listRonnie Sahlberg1-2/+2
svn path=/trunk/; revision=7790
2003-06-05Teach teh sid snooping how to extract sid->name mappings from SAMR:QueryDispInfoRonnie Sahlberg1-1/+204
svn path=/trunk/; revision=7789
2003-05-22Add snooping of sid->domain mapping from POLICY_ACCOUNT_DOMAIN_INFO structuresRonnie Sahlberg1-1/+3
svn path=/trunk/; revision=7713
2003-05-22Rearrange sid snooping a bit.Ronnie Sahlberg1-26/+44
Add snooping of sid->domain mapping for POLICY_DNS_DOMAIN_INFO svn path=/trunk/; revision=7711
2003-05-21Make one QIP infolevel specify a sid hf field and update the embryonic sid ↵Ronnie Sahlberg1-6/+6
snooping framework to handle the new hw name svn path=/trunk/; revision=7709
2003-04-23Make "register_tap_listener()" return NULL on success and a "GString *"Guy Harris1-3/+7
referring to a GString containing an error message on failure, and don't have it print anything on failure. If it fails, have its Tethereal-tap callers print an error message before exiting, and have its Ethereal callers pop up a dialog box with the error (except in cases where the failure is guaranteed not to be the user's fault, and where we exit, in which case we just print an error message before we exit). In all cases, the error message includes the text of the GString. Fix a scanf format string in the DCE RPC statistics Ethereal tap, so that it properly skips the comma before the filter string. Fix some Ethereal error messages not to say "tethereal". svn path=/trunk/; revision=7542
2003-03-25Non-void functions must always return a value; the SID snooping tapGuy Harris1-1/+2
listener isn't a GUI tap, so it should always return 0. svn path=/trunk/; revision=7364
2003-03-25Added SMB option : sid_name_snooping.Ronnie Sahlberg1-0/+230
This feature, when enabled through Edit/preferences/protocols/smb, will look at certain SMB and CIFS related protocols to discover the mapping between SIDs and their Names. For those SIDs whose name has been snooped/discovered ethereal will also add "(<name>)" to the end of the SID when printed in the tree pane through the function dissect_nt_sid(). Currently the feature is not too exciting since the only thing that packet-smb-sidsnooping.c will look at to build this mapping table is replies to the LSA/QueryInfoPolicy infolevel 3 packets and thus discover mappings between a Domain SID and a Domain Name. In the near future this future will be enhanced to also look at more interesting calls such as LSA/LookupSIDs2 and similar. svn path=/trunk/; revision=7362
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-01 02:13:01 +0000