argus-3.0 conformance testing and website repository
Richard Bejtlich
taosecurity at gmail.com
Fri Jun 23 14:42:45 EDT 2006
On 6/23/06, Carter Bullard <carter at qosient.com> wrote:
> Gentle people,
> Looks like we're close to having some code stability, and we're
> looking good on backward compatibility. We have a minimum
> set of working argus components, server, collector/distributor,
> and clients. Thanks to everyone on all the work!!!!!
>
> We do need to do some correctness testing. Does the argus
> record match what is on the wire. Nice thing is we've got a lot
> of history here, but because of the surgical removal of chunks of
> code, there maybe some problems.
>
How about comparing Argus output of that sample trace to output from
other session collection tools/analyzers?
For example:
Conversation stats in Ethereal
Tcptrace
Fproble -> Flow-Tools
Sincerely,
Richard
More information about the argus
mailing list