Cookies op Tweakers

Tweakers maakt gebruik van cookies, onder andere om de website te analyseren, het gebruiksgemak te vergroten en advertenties te tonen. Door gebruik te maken van deze website, of door op 'Ga verder' te klikken, geef je toestemming voor het gebruik van cookies. Wil je meer informatie over cookies en hoe ze worden gebruikt, bekijk dan ons cookiebeleid.

Meer informatie

Door , , 1 reactie
Bron: Wireshark

Iedereen die dieper ingaat op het onderhouden van een netwerkstructuur of communicatieproblemen op een netwerk probeert op te lossen, gebruikt vaak een zo genoemde packet-sniffer. Het programma Wireshark is een voortzetting van het welbekende Ethereal. Het is in staat om de data die over het netwerk wordt verstuurd te analyseren en onderscheid kan maken tussen verschillende netwerk protocollen waardoor je het netwerkverkeer in zijn geheel kan monitoren. Tevens kan je ook reeds opgeslagen dataverkeer gebruiken als invoer voor het programma. Versie 0.99.4 is sinds kort beschikbaar en is voorzien van de volgende lijst met veranderingen:

Bug Fixes:

The following vulnerabilities have been fixed. See the security advisory for details and a workaround.
  • The HTTP dissector could crash. (Bugs 1050 and 1079)
    Versions affected: 0.99.3.
  • The LDAP dissector (and possibly others) could crash. (Bug 1054)
    Versions affected: 0.99.3.
  • The XOT dissector could attempt to allocate a large amount of memory and crash. (Bug 1133)
    Versions affected: 0.9.8 to 0.99.3.
  • The WBXML dissector could crash. (Bug 1134)
    Versions affected: 0.10.11 to 0.99.3.
  • The MIME Multipart dissector was susceptible to an off-by-one error. (Bug 1135)
    Versions affected: 0.10.1 to 0.99.3.
  • If AirPcap support was enabled, parsing a WEP key could sometimes cause a crash.
    Versions affected: 0.99.3.
The following bugs have been fixed:
  • The file set dialog could grow excessively large. (Bug 331)
  • Trying to save flow data may crash Wireshark. (Bug 396)
  • It may not be possible to re-order coloring rules under Windows. (Bug 699)
  • Printing each packet to a new page didn't work under Windows. (Bug 707)
  • The personal hosts configuration file wasn't being parsed correctly. (Bug 795)
  • "Save as" to an existing file wasn't allowed. (Bug 927)
  • The SNMP dissector was not handling 64-bit counters properly. (Bug 1047)
  • Wireshark and TShark would fail to start under Windows while trying to acquire a crypto context. (Bug 1096)
  • The HTTP content-length field was a string instead of an integer. (Bug 1109)
  • Invalid characters could show up in PDML output. (Bug 1110)

New and Updated Features:

The following features are new (or have been significantly updated) since the last release:
  • AirPcap, support (which provides raw mode capture under Windows) has been enhanced to allow capturing on multiple AirPcap adapters simultaneously using the Multi-Channel Aggregator.
  • VoIP call playback has been enhanced. If Wireshark is linked with the PortAudio library, you can play back G.711 conversations. This feature is present in the standard Windows installer.
  • The capture interface dialog display has been enhanced.
  • The "Save" button has been removed from the "Ok" / "Apply" / "Cancel" button group in the following dialogs:
    • Edit/Preferences
    • View/Coloring Rules
    • Capture/Capture Filters
    • Analyze/Display Filters
    • Analyze/Enabled Protocols
    If you're fond of the "Save" button it can be resurrected in the User Interface preferences.
  • Reading from stdin ("-i -") now works under Windows.
  • Expert analysis has been improved.
  • Wireshark now supports USB as a media type. If you're running a Linux distribution with version 2.6.11 of the kernel or greater and you have the usbmon module enabled and you have a recent CVS version of libpcap (post-0.9.5) installed you can also do live captures. More details can be found at the USB capture setup page on the wiki.
  • he number of WEP keys that the user can specify in the IEEE 802.11 protocol preferences has been increased from 4 to 64.

New Protocol Support:
    Enea LINX, Ethernet Powerlink (v1 and v2), H.248 Q.1950 Annex A, Linux pktgen, MP2T, NEWMAIL, PNG, SCSI OSD, UDLD, UMTS FP, USB, WLCCP, WZCSVC

Updated Protocol Support:
    3Com NJACK, 802.11, ACSE, AH, ALCAP, ANSI MAP, ATM, ASN.1, BACapp, BER, BGP, BSSAP, Camel, Catapult DCT2000, CFlow, CLNP, Common Windows networking, DAP, DCERPC (DCERPC, ATSVC, DFS, EFS, EPM, EVENTLOG, INITSHUTDOWN, MAPI, NT, PIPE, SAMR, SPOOLSS, SRVSVC, SVCCTL, WINREG), DCOM (DCOM, CBA-ACCO, SYSACT), DIAMETER, DISP, DNS, DOP, DSP, ESP, Ethernet, FC, FCP, GSM A, GSM MAP, GSM SMS, GSSAPI, GTP, H.225, H.245, H.248, HTTP, ICQ, IKE, ISAKMP, iSCSI, ISUP, IUUP, Kerberos 4, LAP-D, LDAP, LLC, LogotypeCertExtn, MEGACO, MIME Multipart, MIP6, MMS, MSRP, MTP3, NCP, NDMP, NDPS, NFS, NTP, OSI, PER, PN-MRP, PPP, 19154Q.931, RADIUS, Redback, RPC, RTCP, RTP, SCCP, SCSI, SDP, SIP, SMB, SMRSE, SNMP, SSL, STANAG 5066, STP, TCAP, TCP, TFTP, TIPC, UDP, UMA, VLAN, VNC, VRRP, X.509ce X11, YMSG, WTLS

Removed Protocols:
    The CISCOWL dissector has been superseded by WLCCP.

New and Updated Capture File Support:
    Catapult DCT2000, EyeSDN, iSeries
Versienummer:0.99.4
Besturingssystemen:Windows 9x, Windows NT, Windows 2000, Linux, BSD, Windows XP, macOS, Solaris, UNIX, Windows Server 2003
Website:Wireshark
Download:http://www.wireshark.org/download.html
Licentietype:GPL
Moderatie-faq Wijzig weergave

Reacties (1)

Ik hou het nog wel even bij etherreal :P

eerste capturing leverde me een windows reboot op met nadien een mooi kadertje "Windows is hersteld van een ernstige fout ;) "

Op dit item kan niet meer gereageerd worden.



Apple iOS 10 Google Pixel Apple iPhone 7 Sony PlayStation VR AMD Radeon RX 480 4GB Battlefield 1 Google Android Nougat Watch Dogs 2

© 1998 - 2016 de Persgroep Online Services B.V. Tweakers vormt samen met o.a. Autotrack en Carsom.nl de Persgroep Online Services B.V. Hosting door True