search for: tcpflow

On 11/29/2012 12:49 PM, Timo Sirainen wrote: > On 29.11.2012, at 18.06, Daniel L. Miller wrote: > >> On 11/28/2012 10:37 PM, Timo Sirainen wrote: >>> On 29.11.2012, at 7.47, Daniel L. Miller wrote: >>> >>>>> doveadm fetch text -u amiller at amfes.com mailbox-guid a47e4e264aa1c94cc35100003bc41c5f uid 12891 >>>>> >>>> The result

...250 2.1.5 OK DATA 354 Enter mail, end with "." on a line by itself 1234567 qwertyu asdfghj . 530 5.3.0 <user at test.com> Fatal: 501 5.5.4 Unsupported options QUIT 221 2.0.0 OK Connection closed by foreign host. *************************************************** at the same time tcpflow LMTP # tcpflow -c -i any host 127.0.0.33 127.000.000.033.00024-127.000.000.001.41663: 220 mail Dovecot ready. 127.000.000.001.41663-127.000.000.033.00024: LHLO localhost 127.000.000.001.41663-127.000.000.033.00024: 127.000.000.033.00024-127.000.000.001.41663: 250-mail 250-8BITMIME 250-ENHANCEDSTA...

I had similar problems when my auth.php was on password protected http server...but after applying the following configuration i've got it working: <mount> <mount-name>/Test</mount-name> <authentication type="url"> <option name="listener_add" value="http://user:pass@127.0.0.1/auth/action.php"/> <option

...SAML auth for our webmail (sogo.nu) I have created a password-less dovecot imap listener on 127.0.0.1/32, so that once a user is SAML authenticated for the SOGo webmail, SOGo can connect to dovecot on 127.0.0.1:143 with something like "01 LOGIN username randompassword". Watching this (tcpflow) as it happens,i can see the following auth attempt coming from sogo: > 1 login "username" "eF7VVm1vmzAQ/iuI77wY8kJQEy1t2inSukpJVU37UhlzJN7AjmyzZPv1Owfgkdjfkgkfldlkfjg9jQNMvaNZMm7RvifC/Pc/ecfaFpkcdTrUEZLoW1K3Kh4+rn2C6ViCXVXMeCFqBjw+Ll9PZDHLh+TFsPu3ERmozttTGb2PO22627DV2pVl7g+8T7d...

...P2P activity on our corporate network using linux/ipp2p/connmark. That is, until now. For my colleagues have found a new p2p client to wreck havoc on our DSL line: ARES/WAREZ It seems to be a gnuttela clone, but different enouph for ipp2p not to identify it. I played around a bit with tcpflow with no success of finding something that could be taken as a positivie signature in its headers. Is there any info of this new p2p network ? Any open soure client ? Something that could be used to reverse engineer (at least partially) its protocol ? I will really hate to block all FO...

Hi! I use dovecot 2.1.7 on Ubuntu 12.10 with fts_solr und decode2text.sh for indexing attachments. This works great in general. Just for one user there is a problem with an unknown bad attachment. I run "doveadm index -A '*'". After a while I receive: doveadm(xyz): Error: fts_solr: Invalid XML input at line 1: mismatched tag doveadm(xyz): Panic: file solr-connection.c: line

...t openssl 1.1] << in openssl 1.1, SSL_library_init is a preprocessor macro, not an actual symbol; so libesmtp's ./configure erroneously thinks that libssl isn't available, >> There is a technique for fixing this problem by modifying configure.ac at https://github.com/simsong/tcpflow/commit/985f0259a17dfce73f0e7d99990ba70f194cd515 but I don't see how to apply it to nut-2.7.4/configure.ac Roger

...webmail (sogo.nu) I have > created a password-less dovecot imap listener on 127.0.0.1/32, so that > once a user is SAML authenticated for the SOGo webmail, SOGo can connect to dovecot on 127.0.0.1:143 with something like "01 LOGIN username randompassword". > > Watching this (tcpflow) as it happens,i can see the following auth attempt coming from sogo: .. > > Dec 02 22:34:33 imap-login: Info: Disconnected: Input buffer full (no > > auth attempts in 0 secs): user=<>, rip=x.y.z.32, lip=x.y.z.68, > > session=<d+o3tLNCaOvAV48g> If SOGo used AUTHENTICA...

...packet sniffing shows very clearly no packets leaving the icecast server. 8 sep 2006 kl. 13.39 skrev Klauss Fumuldavijus: > i think you'll have to sniff some packets going between icecast > server and wherever.tld > don't know will it work on mac, but on freebsd i'm using tcpflow... > > ----- Original Message ----- From: "Peter Bengtson" > <peter@peterbengtson.com> > To: <icecast@xiph.org> > Sent: Friday, September 08, 2006 2:22 PM > Subject: Re: [Icecast] URL authentication > > >> The php file is not password protected...

Hi, I'm trying to set up dovecot to do pop3 from Eudora, but it keeps breaking on authentication attempts using plain auth. When I snoop the connection with tcpflow, here's what I see: 128.174.246.068.00110-062.107.004.050.49653: +OK dovecot ready. 128.174.246.068.00110-062.107.004.050.49653: +OK dovecot ready. 128.174.246.068.00110-062.107.004.050.49653: 062.107.004.050.49653-128.174.246.068.00110: CAPA 128.174.246.068.00110-062.107.004.050.49653: +OK...

...koha (3.12.01, I know, we have to upgrade) to the samba4 ldap server. We're using auth_by_bind, which should be supported by Active Directory, checked principle name many times. However, I can't login, apache logs says: " LDAP Auth rejected : (uid=heupink) gets 0 hits". Using tcpflow, I can see that my dc1 answers "600002020: Operation unavailable without authentication". So, before I start doing bigger things (like updating koha, which has always been running fine) I'd like to know if I'm missing something obvious? I'm sure many people here are using...

...very clearly no packets leaving the icecast server. > > 8 sep 2006 kl. 13.39 skrev Klauss Fumuldavijus: > >> i think you'll have to sniff some packets going between icecast >> server and wherever.tld >> don't know will it work on mac, but on freebsd i'm using tcpflow... >> >> ----- Original Message ----- From: "Peter Bengtson" >> <peter@peterbengtson.com> >> To: <icecast@xiph.org> >> Sent: Friday, September 08, 2006 2:22 PM >> Subject: Re: [Icecast] URL authentication >> >> >>> The...

Hi all, As long as I can remember reading various articles/docs, they all say that telnet is not secure because all traffic is in clear text. Well, out of boredom, I try to sniff username and password from a telnet session. The command I use: tcpdump tcp port 23 -vvv -w test.txt Then I read the result: strings test.txt |`D |fD |fD 38400,38400 Red Hat Enterprise Linux ESD Ologin: D 5eE

...yeled at lazy.spodder.com/sent set postponed=imap://yeled at lazy.spodder.com/postponed set spoolfile=imap://yeled at lazy.spodder.com/ set certificate_file=~/.mutt/certificates set mail_check=10 set timeout=10 set imap_home_namespace="" set imap_pass="foo" I have included the tcpflow files to show what the clients are doing.. Is it normal to search for folders starting with "." ? Why won't it just pick up my normally nested maildir folders? C. -- charlie at rubberduck.com - http://rubberduck.com/~yeled/ -------------- next part -------------- * OK dovecot re...