Slashdot Mirror

← Back to Domains

Domain: wireshark.org

Stories and comments across the archive that link to wireshark.org.

Stories · 10

  1. Hotel Experience With Android Lightswitches (dreamwidth.org)

    News · Android · · posted by BeauHD · from the insecure-home-automation-deployment dept. · 111 comments
    jones_supa writes: The hotel in which Matthew Garrett was staying at, had decided that light switches are unfashionable and replaced them with a series of Android tablets. In his tour to the system, one was quickly met with a glitch message "UK_bathroom isn't responding." Anyway, two of the tablets had convenient-looking ethernet cables plugged into the wall, so MacGyver began hacking. He managed to borrow a couple of USB ethernet adapters, set up a transparent bridge and then stick his laptop between the tablet and the wall. Tcpdump showed traffic, and Wireshark revealed that it was Modbus over TCP. Modbus is a pretty trivial protocol, and does not implement authentication. The Pymodbus tool could be used to control lights, turn the TV on/off, and even close and open the curtains. Then he noticed something. His room number was 714. The IP address he was communicating with was 172.16.207.14. They wouldn't, would they? Indeed, he could access the control systems on every floor and query other rooms to figure out whether the lights were on or not, which strongly implies that he could control them as well.

  2. Wireshark Switches To Qt

    News · Gui · · posted by Soulskill · from the changing-horses dept. · 79 comments
    An anonymous reader writes "Beginning with version 1.11.0, open source packet analyzer Wireshark is switching its user interface library from GTK+ to Qt. 'Both libraries make it easy for developers [to] write applications that will run on different platforms without having to rewrite a lot of code. GTK+ has had a huge impact on the way Wireshark looks and feels and on its popularity but it doesn't cover our supported platforms as effectively as it should and the situation is getting worse as time goes on.'"

  3. Wireshark 1.0 Released

    Tech · Networking · · posted by ScuttleMonkey · from the happy-sniffing dept. · 123 comments
    katterjohn writes "After almost 10 years of work, Wireshark 1.0 has been released. Wireshark is the award-winning protocol analyzer, formerly known as Ethereal. The release features several security fixes and an experimental package for Max OS X Intel."

  4. Bossie Awards Honor Open Source Software

    Tech · Software · · posted by ScuttleMonkey · from the something-for-everyone dept. · 66 comments
    The Alliance writes "InfoWorld has announced the 2007 Bossie Awards for the Best of Open-Source Software. Awards were given to 36 winners across 6 categories. Honorees include (among others) SpamAssassin, ClamAV and Nessus in security, Wireshark and Azureus Vuze in networking, and ZFS for storage. Interestingly, they split the operating system winners across two distributions, with CentOS winning for server OS and Ubuntu for desktop."

  5. Are AV False Positives Hurting You?

    Ask · Bug · · posted by Cliff · from the this-code-is-not-a-virus dept. · 97 comments
    Gerald asks: "After the most recent Wireshark release a certain AV vendor's product started warning users that the installer contained adware. Since then, I've spent several hours verifying this isn't the case, trying to get the AV vendor to fix their stuff, and reassuring affected users that we do not ship adware with our product. Unfortunately, this isn't an isolated case. I've had to do this several times over the past few years, and each incident uses up time that could have been better spent elsewhere. It's even worse for other projects. If you produce software, have you ever suffered collateral damage from AV false positives?"

  6. Are AV False Positives Hurting You?

    Ask · Bug · · posted by Cliff · from the this-code-is-not-a-virus dept. · 97 comments
    Gerald asks: "After the most recent Wireshark release a certain AV vendor's product started warning users that the installer contained adware. Since then, I've spent several hours verifying this isn't the case, trying to get the AV vendor to fix their stuff, and reassuring affected users that we do not ship adware with our product. Unfortunately, this isn't an isolated case. I've had to do this several times over the past few years, and each incident uses up time that could have been better spent elsewhere. It's even worse for other projects. If you produce software, have you ever suffered collateral damage from AV false positives?"

  7. Are AV False Positives Hurting You?

    Ask · Bug · · posted by Cliff · from the this-code-is-not-a-virus dept. · 97 comments
    Gerald asks: "After the most recent Wireshark release a certain AV vendor's product started warning users that the installer contained adware. Since then, I've spent several hours verifying this isn't the case, trying to get the AV vendor to fix their stuff, and reassuring affected users that we do not ship adware with our product. Unfortunately, this isn't an isolated case. I've had to do this several times over the past few years, and each incident uses up time that could have been better spent elsewhere. It's even worse for other projects. If you produce software, have you ever suffered collateral damage from AV false positives?"

  8. Are AV False Positives Hurting You?

    Ask · Bug · · posted by Cliff · from the this-code-is-not-a-virus dept. · 97 comments
    Gerald asks: "After the most recent Wireshark release a certain AV vendor's product started warning users that the installer contained adware. Since then, I've spent several hours verifying this isn't the case, trying to get the AV vendor to fix their stuff, and reassuring affected users that we do not ship adware with our product. Unfortunately, this isn't an isolated case. I've had to do this several times over the past few years, and each incident uses up time that could have been better spent elsewhere. It's even worse for other projects. If you produce software, have you ever suffered collateral damage from AV false positives?"

  9. RIP Ethereal, Long Live Wireshark

    · posted by ryuzaki0 · from the shark-made-of-wires dept. · 47 comments
    teknogeek0 writes "From Newsforge (also owned by OSTG), it appears that popular open source network traffic analyzer Ethereal has changed it's name to Wireshark. The surprising move was due to Gerald Combs, the founder of the project, changing jobs and having to leave the Ethereal trademark behind. From the article: 'I recently accepted a job with CACE Technologies, best known for WinPcap .... The move also means a major change for the project. We're continuing development under the name Wireshark, at http://www.wireshark.org/. The web site, mailing lists, bug tracker, SVN repository, buildbot, and other resources are already in place.'"

  10. RIP Ethereal, Long Live Wireshark

    · posted by ryuzaki0 · from the shark-made-of-wires dept. · 47 comments
    teknogeek0 writes "From Newsforge (also owned by OSTG), it appears that popular open source network traffic analyzer Ethereal has changed it's name to Wireshark. The surprising move was due to Gerald Combs, the founder of the project, changing jobs and having to leave the Ethereal trademark behind. From the article: 'I recently accepted a job with CACE Technologies, best known for WinPcap .... The move also means a major change for the project. We're continuing development under the name Wireshark, at http://www.wireshark.org/. The web site, mailing lists, bug tracker, SVN repository, buildbot, and other resources are already in place.'"