Jon Siwek 49b8c7e390 Add analyzer for GSI mechanism of GSSAPI FTP AUTH method. ... GSI authentication involves an encoded TLS/SSL handshake over the FTP control session. Decoding the exchanged tokens and passing them to an SSL analyzer instance allows use of all the familiar script-layer events in inspecting the handshake (e.g. client/server certificats are available). For FTP sessions that attempt GSI authentication, the service field of the connection record will have both "ftp" and "ssl". One additional change is an FTP server's acceptance of an AUTH request no longer causes analysis of the connection to cease (because further analysis likely wasn't possible). This decision can be made more dynamically at the script-layer (plus there's now the fact that further analysis can be done at least on the GSSAPI AUTH method).		2012-10-05 10:43:23 -05:00
..
conn	Add Conn and DNS protocol script documentation. (fixes #731)	2012-01-09 14:23:24 -06:00
dns	Small script refinements and documentation updates.	2011-10-21 13:58:58 -04:00
ftp	Add analyzer for GSI mechanism of GSSAPI FTP AUTH method.	2012-10-05 10:43:23 -05:00
http	Add @load-sigs directive for loading signature files (addresses #551).	2012-06-01 14:10:23 -05:00
smtp	Adding an identifier to the SMTP blocklist notices for duplicate suppression.	2012-08-23 13:55:04 -04:00
ssh	Merge remote-tracking branch 'origin/master' into topic/bernhard/software	2012-01-20 12:51:58 -08:00
ssl	Finished SSL & syslog autodocs.	2012-01-10 00:56:12 -05:00