Hi Nitin, On Fri, 2013-03-01 at 10:11 -0500, Nitin Rana wrote:
> I downloaded wireshark-1.9.0 code, and tried changing the mapi.idl > (copied over EcDoConnectEx). After I got the wireshark dissector .c/.h > generated somehow, the files were not in shape to compile. The > generated code had pointers (just *) without the variable name in the > prototypes. > I have a backup of our previous svn repositories - which hosted our own mapi dissector for wireshark. Just got extremely busy so far and didn't have the chance to do this admin thing. > It seems that the working files (the generated files) might have been > checked-in, and mapi.idl (from epan/dissectors/pidl/mapi.idl) is not > used in the build process. > wireshark build process relies on already autogenerated files. The sources only gets compiled when using trunk/master version of wireshark if I remember correctly. > Do you know if Microsoft Netmon or some other tool has the ability to > dissect MAPI PDUs. I tried Microsoft netmon, but it doesn't seem to > decode MAPI. > Microsoft has released an Exchange RPC extractor available in its 1.0 that works - as far as I remember from Exchange team demo in Redmond - pretty well. http://www.microsoft.com/en-us/download/details.aspx?id=3520 Probably worth giving a look there if you need it urgently. Kind Regards, Julien. -- Julien Kerihuel [email protected] OpenChange Project Founder Twitter: http://www.twitter.com/jkerihuel GPG Fingerprint: 0B55 783D A781 6329 108A B609 7EF6 FE11 A35F 1F79 _______________________________________________ devel mailing list [email protected] http://mailman.openchange.org/listinfo/devel
