[Flow-tools] Archived code
Dave Plonka
plonka at doit.wisc.edu
Thu Jan 31 13:41:51 EST 2008
Hi Andy,
On Thu, Jan 31, 2008 at 10:30:37AM -0600, Andy Terrel wrote:
>
> I am brand new to using flow-tools but have been pointed at flow-tools
> by some people using it for security. And have just started using the
> code (0.680 from the debian package.
>
> The code I wanted to use on top of flow-tools is the UofC package
> flow-extract ( http://security.uchicago.edu/tools/net-forensics/ )
> linked to off the splintered.net page. The READMe in the code says it
> needs some things from flow-tools 0.32. I tried accessing the code
> archive ( ftp://ftp.eng.oar.net/pub/flow-tools/ ) linked to by the
> splintered.net page but only get errors saying I cannot connect to the
> server.
>
> Is there a better place to grab either the flow-tools 0.32 or even
> better a version of flow-extract?
My current understanding is that the lastest one that Mark Fullmer
released (0.66 stable (which is what I use) 0.68 devel) is here:
http://www.splintered.net/sw/flow-tools/
And one by other(s), with fixes including support for 64-bit
architectures is available here:
http://code.google.com/p/flow-tools/
Dave
--
plonka at doit.wisc.edu http://net.doit.wisc.edu/~plonka/ Madison, WI
More information about the Flow-tools
mailing list