Wireshark · Wireshark-dev: Re: [Wireshark-dev] Using external DTD

[scott.harman@xxxxxxxxxxx]

Hi Anders

Thanks for that - yes it is for the
MOS protocol -
We're trying to find out the machine
which did the capture - will test in house tomorrow.
Is it not possible to write an XML dissector?
 I was really hoping it was going to be as easy as writing a full
DTD ;)

Thanks again

Scott

"Anders Broman" <anders.broman@xxxxxxxxxxxx>
Sent by: wireshark-dev-bounces@xxxxxxxxxxxxx

02/10/2008 16:53

Please respond to
Developer support list for Wireshark <wireshark-dev@xxxxxxxxxxxxx>

To	"Developer support list for Wireshark" <wireshark-dev@xxxxxxxxxxxxx>
cc
Subject	Re: [Wireshark-dev] Using external DTD

Hi,
You need to write a mos dissector
;) The TCP dissector will not interpret the data.
Is this http://www.mosprotocol.com/
?
 
The data looks fishy, every ASCII
character separated by 00?
Regards
Anders

---

From: wireshark-dev-bounces@xxxxxxxxxxxxx
[mailto:wireshark-dev-bounces@xxxxxxxxxxxxx] On Behalf Of scott.harman@xxxxxxxxxxx
Sent: den 1 oktober 2008 14:30
To: Developer support list for Wireshark
Subject: [Wireshark-dev] Using external DTD


Hi guys 
I'm trying to use an externally generated DTD to parse some traffic

I've attached a packet and my dtd - can anyone point me in the right direction?
It's displaying as TCP/XML in Wireshark (1.0.99 and 1.02) but it's simply
not decoding. 
Can anyone help me get this working? 

Many thanks 

Scott 



-- 
This e-mail is intended for the named addressees only. Its contents may
be privileged or confidential and should be treated as such. If you are
not an intended recipient please notify the sender immediately and then
delete it;  do not copy, distribute, or take any action based on this
e-mail. In the pursuit of its legitimate business activities and its conformance
with relevant legislation, Quantel may access any e-mail (including attachments)
it originates or receives, for potential scrutiny. 

Quantel is the trade name used by Quantel Holdings Limited and its subsidiaries.
 Quantel Holdings Limited is registered in England & Wales.  Registration
No: 4004913 
Contact details for all Quantel Offices and Companies can be found on our
website www.quantel.com or by writing to the holding company.
Registered address: Turnpike Road, Newbury, Berkshire, RG14 2NX, United
Kingdom _______________________________________________
Wireshark-dev mailing list
Wireshark-dev@xxxxxxxxxxxxx
https://wireshark.org/mailman/listinfo/wireshark-dev



-- 
This e-mail is intended for the named addressees only. Its contents may
be privileged or confidential and should be treated as such. If you are
not an intended recipient please notify the sender immediately and then
delete it;  do not copy, distribute, or take any action based on this
e-mail. In the pursuit of its legitimate business activities and its conformance
with relevant legislation, Quantel may access any e-mail (including attachments)
it originates or receives, for potential scrutiny. 

Quantel is the trade name used by Quantel Holdings Limited and its subsidiaries.
 Quantel Holdings Limited is registered in England & Wales.  Registration
No: 4004913 
Contact details for all Quantel Offices and Companies can be found on our
website www.quantel.com or by writing to the holding company.
Registered address: Turnpike Road, Newbury, Berkshire, RG14 2NX, United
Kingdom