Wireshark-dev: Re: [Wireshark-dev] SMTP: Extracting parametrs
From: "goitom kahsay" <[email protected]>
Date: Sat, 17 May 2008 20:48:43 +0300
Hi steve,

Thank u very much for ur help.

I read all u recommend me and it is very important.

It is also  the best place to display these values in the Export object feature.But i have difficulty gathering the  contents of an e-mail. So can u help me any idea on how to gather these values(FROM,TO,SUBJECT,DATE) from the packet-smtp.c dissector.

Any idea is most appriciated.

Thank u in advance.
with best regards.

On Thu, May 1, 2008 at 9:49 AM, Stephen Fisher <[email protected]> wrote:
On Thu, May 01, 2008 at 09:27:06AM +0300, goitom kahsay wrote:

> I want to display these values(the SMTP parameters such as
> FROM,TO,SUBJECT,DATE) in a *new dialog* under the analyze menu. And
> the dialog displays these values from each SMTP packets displayed in
> the packet list pane.

If the contents of the e-mails are gathered also, the best place to
display this information is probably via the Export Object feature (File
- Export - Object menu).  The only object export implemented so far is
HTTP.  See gtk/export_object.c, gtk/export_object_http.c and a small
piece in epan/dissectors/packet-http.c for how this is implemented.
Hint: It uses the tap mechanism to pass the information from the
dissector to the export object dialog.


Wireshark-dev mailing list
[email protected]