		Easy Sniffer Frequently Asked Questions
		---------------------------------------
				    By Marcelo Gornstein
				    mgornstein@usa.net
				    		
Q: What is Easy Sniffer?
A: Well, the question you are probably looking for is "What will Easy Sniffer
do in the future?". That is because Easy Sniffer is more a kind of a project
than a finished program. My lack of enouch computer hardware is delaying
the coding part, so i beg you, please test it and send me any comments.
please ;)

Q: What will Easy Sniffer do in the future?
A: Easy Sniffer will let you "code" your sniffer according to your needs.
Via modules compiled at your glance, you will have the maximum flexibility
over your sniffer. With just touching one config file, you will be able to
watch for a specific:
tcp packet filtered by: flags (syn, rst, psh,  urg, fin) and by destiny port.
udp packet filtered by destiny port.
ip packet filtered by source or destiny ip address, by source or mac address,
by ip version, etc. 
In the future you will be able to log the data part of the sniffer to, 
filtering by user-defined strings.
Besides, Easy Sniffer will let you encrypt the log via a XOR, DES, 3DES or
BLOWFISH algorithm. 

Q: How can i "code" my own sniffer?
A: You could write literaly your own or you could play a little with
the config.h file ;)
In that file you will see some #define's. Just turn on or off the
flags and adjust the variables to make a sniffer according to your needs.
I mean, if you just want to see UDP packets, why have the TCP part of the
program occuping space and memory?

Q: Can I port Easy Sniffer to other platforms?
A: Please! Be my guest! I guess the code is pretty portable (except for
the use of SOCK_PACKET, but any platform with this socket will work).
Please contact me if you want to port Easy Sniffer.

Q: Which devices will Easy Sniffer support?
A: The current Easy Sniffer version supports only an ethernet (eth*) device.
I'm planning to support a RAW_SOCKET, loopback(lo) and a ptp (ppp*) device.

Q: What do I need to use Easy Sniffer?
A: Well, a linux Slackware 3.5 running a kernel 2.2.9 with glibc 2.0.7 and
a NE2000 worked for me ;)

Q: How can I help?
A: Wow! In any way you want. You can send me bug reports, ideas or whatever
you like! ;). You will have the proper credit.
If you would like to mantain or code some part of Easy Sniffer, please
contact me.
