& / #728 / G
Sniffing is computer-network equivalent of telephone tapping. A Sniffer is simply
any software tool used for sniffing. Needs of modern networks today are much more
than a sniffer can meet, because of high network traffic and load.
Some efforts are shown to overcome this problem. Although successful approaches
exist, problem is not completely solved. Efforts mainly includes producing faster
hardware, modifying NICs (Network Interface Card), modifying kernel, or some
combinations of them. Most efforts are either costly or no know-how exists.
In this thesis, problem is attacked via modifying kernel and NIC with aim of transferring
the data captured from the network to the application as fast as possible. Snort
[1], running on Linux, is used as a case study for performance comparison with the
original system. A significant amount of decrease in packet lost ratios is observed at
resultant system.
| Identifer | oai:union.ndltd.org:METU/oai:etd.lib.metu.edu.tr:http://etd.lib.metu.edu.tr/upload/1097856/index.pdf |
| Date | 01 January 2003 |
| Creators | Topaloglu, Mehmet Ersan |
| Contributors | Sener, Cevat |
| Publisher | METU |
| Source Sets | Middle East Technical Univ. |
| Language | English |
| Detected Language | English |
| Type | M.S Thesis |
| Format | text/pdf |
| Rights | To liberate the content for public access |
Page generated in 0.0017 seconds