From 5c33fbf19b5bab76aca04432fc7fa6f956ff785f Mon Sep 17 00:00:00 2001
From: Luca Deri <deri@ntop.org>
Date: Wed, 11 Aug 2021 11:52:24 +0200
Subject: Added extraction of hostname in SMTP Fixed mail incalid subprotocol
 calculation

---
 tests/pcap/smtp-starttls.pcap       | Bin 0 -> 9003 bytes
 tests/result/smtp-starttls.pcap.out |   7 +++++++
 2 files changed, 7 insertions(+)
 create mode 100644 tests/pcap/smtp-starttls.pcap
 create mode 100644 tests/result/smtp-starttls.pcap.out

(limited to 'tests')

diff --git a/tests/pcap/smtp-starttls.pcap b/tests/pcap/smtp-starttls.pcap
new file mode 100644
index 000000000..493751539
Binary files /dev/null and b/tests/pcap/smtp-starttls.pcap differ
diff --git a/tests/result/smtp-starttls.pcap.out b/tests/result/smtp-starttls.pcap.out
new file mode 100644
index 000000000..660a76c9d
--- /dev/null
+++ b/tests/result/smtp-starttls.pcap.out
@@ -0,0 +1,7 @@
+Guessed flow protos:	1
+
+DPI Packets (TCP):	36	(36.00 pkts/flow)
+
+Google	36	8403	1
+
+	1	TCP 10.0.0.1:57406 <-> 173.194.68.26:25 [proto: 3.126/SMTP.Google][Encrypted][cat: Web/5][17 pkts/2514 bytes <-> 19 pkts/5889 bytes][Goodput ratio: 55/79][0.48 sec][Host: mx.google.com][bytes ratio: -0.402 (Download)][IAT c2s/s2c min/avg/max/stddev: 0/0 30/24 156/103 42/26][Pkt Len c2s/s2c min/avg/max/stddev: 66/66 148/310 752/1484 168/444][PLAIN TEXT (x.google.com ESMTP s4)][Plen Bins: 23,18,13,9,4,4,4,0,0,4,0,0,0,0,0,0,0,0,0,0,0,4,0,0,0,0,4,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,9,0,0,0]
-- 
cgit v1.2.3