9243 – tcpdump under RedHat 6.1 captures/reads files in incorrect format

Bug 9243 - tcpdump under RedHat 6.1 captures/reads files in incorrect format

Summary: tcpdump under RedHat 6.1 captures/reads files in incorrect format

Keywords:
Status:	CLOSED DUPLICATE of bug 6773
Alias:	None
Product:	Red Hat Linux
Classification:	Retired
Component:	tcpdump
Sub Component:
Version:	6.1
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	high
Target Milestone:	---
Assignee:	Harald Hoyer
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2000-02-08 19:44 UTC by Daniel Senie
Modified:	2008-05-01 15:37 UTC (History)
CC List:	0 users
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2000-02-09 19:45:02 UTC
Embargoed:

Attachments	(Terms of Use)

Description Daniel Senie 2000-02-08 19:44:39 UTC

When using tcpdump to capture packets to a file, or read packets from a
file, the file format used is inconsistent with the version of TCPDUMP on
RedHat 6.0 and 5.2 (and probably earlier). It would appear that some
alignment issues have occurred, perhaps due to changing compilers (egcs
vs. gcc).

The net result is that tcpdump-3.4-5 (on a RH5.2 system) for example,
cannot read files created on a 6.1 system running tcpdump-3.4-16, or vice
versa.

Third-party tools, such as EtherPeek (http://www.aggroup.com) are able to
read and decode tcpdump files from RedHat 6.0 and previous, but cannot
read them from RedHat 6.1. This backs up my contention that the file
format in 6.1 is messed up.

Comment 1 Jeff Johnson 2000-02-09 19:45:59 UTC

*** This bug has been marked as a duplicate of 6773 ***

Note You need to log in before you can comment on or make changes to this bug.