Excuse. I am engaged in other things. Go on http://www.xakep.ru/
I advise:
http://www.osp.ru/news/index.html
================================================
PS:
Forgive - I badly know English language.
2008/2/1, Bill Meier <wmeier@xxxxxxxxxxx>:
> A quick look shows the basic format of this iris.cap
> file to be:
>
> <File header>
> <1 byte version string length>
> <version string>
>
> <Record>
> <12 byte record header>
> <2 byte frame length (little-endian)>
> <10 bytes ??>
> <frame>
> <Record>
> ...
>
> From the iris.cap file
>
> 08 49 72 69 73 20 76 2e 31 .Iris v.1B
> 42 00 00 00 1c 0d 99 59 9c 64 c8 01
> ... (0x42 byte frame #1)
> 42 00 00 00 1c 0d 99 59 9c 64 c8 01
> ...
> 36 00 00 00 1c 0d 99 59 9c 64 c8 01
> ...
> 13 01 00 00 1c 0d 99 59 9c 64 c8 01
> ...
> 36 00 00 00 1c 0d 99 59 9c 64 c8 01
> ... (0x36 byte frame #5: 'pad' bytes not stored)
>
>
>
> Interestingly, the 10 bytes after the length
> in each record header are the same.
> I would have expected them to show some sign of an increasing
> frame time.
>
>
>
> _______________________________________________
> Wireshark-users mailing list
> Wireshark-users@xxxxxxxxxxxxx
> http://www.wireshark.org/mailman/listinfo/wireshark-users
>
