Hi, p0f performs passive OS detection based on SYN packets. p0f-1.8.2.tar.gz contains p0f-1.8.2.ebuild, p0f-1.8.2-makefile.patch to patch Makefile not to use programs outside sandbox (uname to check for sun os, which is not needed on a linux system) and p0f-1.8.2.init - I modified the original rc script to work with the gentoo rc scripting stuff. The passive OS fingerprinting technique is based on information coming from a remote host when it tries to establish a connection to your system. Captured packet parameters contain enough information to identify the remote OS. In contrast to active scanners such as nmap and queSO, p0f does this without sending anything to the remote host. I suggest net-analyzer/p0f for this ebuild.
Created attachment 183 [details] p0f-1.8.2.tar.gz - p0f-1.8.2.ebuild and patches