Re: packet sniffer that IDs source?

From: Walter Roberson (roberson@ibd.nrc.ca)
Date: 12/18/02


From: roberson@ibd.nrc.ca (Walter Roberson)
Date: 18 Dec 2002 13:58:02 GMT

In article <NMTL9.58927$Y86.44873@news2.central.cox.net>,
capstan <capstan@aol.com> wrote:
:Is there a packet sniffer that IDs the file or application that is the
:source of IP tranmission? And this presented in an easily understood way?
:Im a trying to find source of suspicious IP output from my computer.

No, by the time the packet has hit the interface, it's too late to
identify it's origin. You need something that's dug down deeper
into the IP stack. Perhaps something like ZoneAlarm?

--
   Tenser, said the Tensor.
   Tenser, said the Tensor.
   Tension, apprehension,
   And dissension have begun.               -- Alfred Bester (tDM)