Prompted by Simon Hitzemann in PR 19061
Changes from 0.6.6.6 to 0.6.7:
0.6.7 20020702
+ Updated the passive OS fingerprint database (853 records)
!! Fixed the strlcpy bug in the the telnet dissector (oops alor mistake)
!! Fixed a possible sigfault in the rlogin dissector
!! Fixed the exit_func for Mac OS X
was altered to include sys/queue.h, which supplies a pile of macros
and defines _SYS_QUEUE_H_. Prior to this change, ettercap was able
to pull in its own ec_queue.h file to define these macros (and the
missing ones below) and also define _SYS_QUEUE_H_. The two macros
listed below are not in our definition of the macros, so we define
them manually later, if they're not defined by the include files.
0.6.6.6 -- 20020603 + Solaris porting
+ Sparc architecture support even for all other OSes
+ Windows 9X porting (developed by tavi)
+ Increased the speed of arp storm under windows (developed by tavi)
+ Added the ability to bind a port on which ettercap
forwards the sniffed trafic (press 'B' from the sniffing interface)
+ The -H option now supports range ip
(i.e. 192.168.1-5.10-20,30-40,50,100-150)
+ NEW PLUGIN:
- lamia (become root of a switches spanning tree)
+ Windows installer now have a nice splash screen ;)
+ Updated the passive OS fingerprint database (825 records)
!! Fixed the pthread_join problem under MacOSX
!! Fixed the -w options (openssl path related bug)
!! Fixed the conflicting options -Y and -a
!! Fixed the FindIface function under BSD
0.6.5 -- 20020423 + Windows (CYGWIN) porting
+ Dumping to tcpdump file format is now supported (-Y option)
+ New OffLine sniffing from tcpdump like files (-T option)
+ Sniffing from command line now capture UDP+TCP packet by default
- Changed the -t (--linktype option) to -g
+ Added the -t (--proto option) to sniff only that protocol in simple mode
+ Logging engine doesn't log the same user/pass/ip twice (as requested by Gushterul)
+ Under *BSD and MacOSX ettercap now uses only one bpf
+ Added the -J options (onlyposion) to allow multitarget arp sniffing
+ USER and PASS may have a length of 50 chars
+ NEW PLUGIN :
- roper (Tries to stop ISAKMP for IPSEC traffic)
+ NEW password collector for:
- QUAKE 3 (rcon command) (developed by LnZ)
- ICQ v7 (developed by LnZ)
- MSN (the pass is an MD5 hash)
- YMSG (the pass in in UNIX MD5 format) (as requested by tavi)
+ DISSECTORS enhanced: HTTPS - IMAP - NAPSTER (opennap) - IRC
+ PLUGIN enhanced:
- leech (now it rearps the victim after isolation)
+ Updated the passive OS fingerprint database (762 records)
+ Updated the active OS fingerprint database
nmap-os-fingerprints,v 1.77 2002/03/20 05:42:48 fyodor
+ DOCUMENTATION translated in Polish and Dutch
+ Added the 'cvs' target to the Makefile
!! Fixed an ntohs() problem in the phantom plugin
!! Fixed a bug in the SMB dissector dealing with unicode user and password
!! Better handling of CTRL+C
!! Fixed a bug in doppleganger
!! Fixed a bug the the dlsym on OpenBSD 3.0 (plugin related)
!! Fixed the visualization of password with length > 13
!! Fixed a bug in the handling of debug file
!! Fixed the "not scrolling" JOINED visualization
Ettercap is a multipurpose sniffer/interceptor/logger for switched LAN. It
supports active and passive dissection of many protocols (even ciphered ones)
and includes many features for network and host analysis.
Submitted by Niilo Kajander <nk@bsdirc.net> in PR 16091
