1999-05-26 10:49:00 -04:00
|
|
|
--- sniffit.0.3.5.c.orig Fri Apr 18 05:33:58 1997
|
|
|
|
+++ sniffit.0.3.5.c Wed May 26 09:42:33 1999
|
|
|
|
@@ -93,7 +93,9 @@
|
|
|
|
exit(0);
|
|
|
|
}
|
|
|
|
|
|
|
|
-void my_exit (void) { exit(0);};
|
|
|
|
+void my_exit (void) {
|
|
|
|
+ if(LOGGING=1) stop_logging();
|
|
|
|
+ exit(0);};
|
|
|
|
|
|
|
|
/* DEBUGGING INFO */
|
|
|
|
#ifdef DEBUG
|
|
|
|
@@ -411,11 +413,22 @@
|
|
|
|
proto=unwrap_packet(sp, info);
|
|
|
|
if(proto == NO_IP) return DONT_EXAMINE; /* no use in trying */
|
|
|
|
if(proto == NO_IP_4) return DONT_EXAMINE; /* no use in trying */
|
|
|
|
+ if(proto == CORRUPT_IP)
|
|
|
|
+ {
|
|
|
|
+ printf("Suspicious Packet detected... (Split header)\n");
|
|
|
|
+ return DONT_EXAMINE;
|
|
|
|
+ }
|
|
|
|
|
|
|
|
memcpy(&iphead,(sp+PROTO_HEAD),sizeof(struct IP_header));
|
|
|
|
so=(unsigned char *)&(iphead.source);
|
|
|
|
dest=(unsigned char *)&(iphead.destination);
|
|
|
|
|
|
|
|
+ if(info->FRAG_nf!=0)
|
|
|
|
+ {
|
|
|
|
+ printf("Fragment Skipped...\n");
|
|
|
|
+ return DONT_EXAMINE;
|
|
|
|
+ }
|
|
|
|
+
|
|
|
|
if((proto==TCP)&&(PROTOCOLS&F_TCP))
|
|
|
|
{
|
|
|
|
#ifdef DEBUG_ONSCREEN
|
|
|
|
@@ -1220,6 +1233,9 @@
|
|
|
|
proto=unwrap_packet(sp, info);
|
|
|
|
if(proto == NO_IP) return DONT_EXAMINE; /* no use in trying */
|
|
|
|
if(proto == NO_IP_4) return DONT_EXAMINE; /* no use in trying */
|
|
|
|
+ if(proto == CORRUPT_IP) return DONT_EXAMINE; /* no use in trying */
|
|
|
|
+
|
|
|
|
+ if(info->FRAG_nf!=0) return DONT_EXAMINE;
|
|
|
|
|
|
|
|
(*IP_nr_of_packets)++;
|
|
|
|
if(proto==ICMP)
|