-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Thanks! That's exactly what I'm trying to do :) It's been a while
since I did any shell scripting (and the last "script" I wrote was a DOS
.BAT file), but there's an old mainframe type here who's already going
"Whoah, cool, let me play with this!"
Cheers!
Chris
Alistair.McGlinchy@xxxxxxxxxxxxxxxxxxxxx wrote:
| Chris,
|
|
|>Given the relatively limited amount of space for /var, and
|>that I would like to see what's going on while I'm in the
|>office and during the weekends (when I suspect these
|>infections to be taking place), I would like to tell ethereal
|>to send me an email containing the capture file every time
|>that file reaches about 4M or so. Can this be done, and if
|>so, could someone point me to the resource or do some 'hand
|>holding'?
|
|
| You can capture only 4M at a time using the filesize option with tethereal
| tethereal -a filesize:4000 -w trace.cap
|
| To get the STDERR info as well
| tethereal -a filesize:4000 -w trace.cap 2>&1 info.txt
|
| Write an script to email the response. To do this in perl see:
| perldoc -q attachment
|
| You want to restart every 4MB, so you need another perl (or bash) script:
|
| while(1){
| system('./run_4MBtethereal.sh');
| # Note the & at the end of this system call.
| # You don't want to wait for the email to finish before
| # tethereal is restarted
| system('./email_4MB_file.sh trace.cap info.txt &');
| }
|
| HTH
|
| Alistair
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQE+jJ3ypXYXbUIoL6kRAnWOAJ9+tfzWf2PPsfNUe9tWmULL9RgvnACfT0X3
UwP78uSpqvg2Sog99NCJj2c=
=ne7n
-----END PGP SIGNATURE-----
