Re: [ANNOUNCE] WinPcap 4.1 has been released

[jah <jah () zadkiel plus com>]

On 23/10/2009 22:43, Rob Nicholls wrote:
> I've already started work on it (and already have something that should do
> the trick, which I've tested on a variety of systems), but I'm trying to
> finish off a slightly more elegant hack to fix a bug. Hopefully I should
> have something finished in the next 24 hours.
Hi Rob,

I'm glad you're on to it.  I've got as far as trying to work out how to
deploy the two vista packet.dll when I read your message - so I can stop
now.
I've made an update to the Upgrading-Instructions.txt which includes a
few extra details and adds an unfinished section for the AMD x64 version
of npf.sys.  I was going to complete (the instructions for) that step
(5) after I'd rewrote step 4 (Vista Packet.dll) with the new
instructions (whatever they may be).
I've attached a patch in case you want to update step 4 / finish the
instructions.

regards,

jah

--- Upgrading-Instructions.txt.orig     2009-10-23 23:50:00.250000000 +0100
+++ Upgrading-Instructions.txt  2009-10-23 23:49:08.562500000 +0100
@@ -1,39 +1,45 @@
 How to upgrade Nmap to a new WinPcap release (2007)
 ---------------------------------------------------
 
-1) Download the latest version of WinPcap from www.winpcap.org and make
+ 1) Download the latest version of WinPcap from www.winpcap.org and make
    a note of the version (for example 4.0).
 
-2) Remove all instances of WinPcap (through Add/Remove Programs), then
+ 2) Remove all instances of WinPcap (through Add/Remove Programs), then
    install the new version.
 
    2a) Update the LICENSE file, if necessary. I couldn't find a plain
       WinPcap license file anywhere. There's an HTML version at
       http://www.winpcap.org/misc/copyright.htm. You can copy and paste
-      the license text from the installer into the LICENSE file.
+      the license text from the installer into the LICENSE file which should
+      be saved as PC file format (not UNIX) and ANSI encoding (not UTF-8).
 
-3) Copy the installed files into the mswin32/winpcap directory. The
+ 3) Copy the installed files into the mswin32/winpcap directory. The
    installed files at time of writing are
 
         C:\Program Files\WinPcap\rpcapd.exe
         C:\Windows\system32\Packet.dll
         C:\Windows\system32\pthreadVC.dll
-        C:\Windows\system32\WanPacket.dll
         C:\Windows\system32\wpcap.dll
         C:\Windows\system32\drivers\npf.sys
-   
-4) Copy the Vista version of Packet.dll. This is tricky because there
-   are several (three, as of this writing) versions of Packet.dll in the
-   installer but only one is installed at a time. You can see all the
-   versions by opening the installer with 7-Zip (http://www.7-zip.org/).
-   Select the installer within 7-Zip and click "File", "Open Inside".
-   Enter the $SYSDIR subdirectory. One by one, extract (you can drag and
-   drop) the copies of Packet.dll somewhere. Right-click on each
-   Packet.dll, click "Properties", then select the "Version" tab. The
-   "Description:" field will have a string containing "NT4", "NT5", or
-   "Vista". When you find the Vista file copy it to vista/Packet.dll.
 
-5) Open winpcap-nmap.nsi.
+   C:\Windows\system32\WanPacket.dll was present before version 4.1.1 but
+   is no longer.
+
+ 4) Copy the Vista version of Packet.dll to vista/Packet.dll from the
+   installer. This is tricky because there are several (five, as of this
+   writing) versions of Packet.dll in the installer but only one is
+   installed at a time. You can see all the versions by opening the
+   installer with 7-Zip (http://www.7-zip.org/).  Select the installer
+   within 7-Zip and click "File", "Open Inside". Enter the $SYSDIR
+   subdirectory. One by one, extract (you can drag and drop) the copies of
+   Packet.dll somewhere. Right-click on each Packet.dll, click
+   "Properties", then select the "Version" tab. The "Description:" field
+   will have a string containing "NT4", "NT5", or "Vista". When you find
+   the Vista file copy it to vista/Packet.dll.
+
+ 5) Copy the AMD64 version of npf.sys to x64/npf.sys.
+
+ 6) Open winpcap-nmap.nsi.
    5a) Change the version for the following lines:
 
         Name "WinPcap (Nmap) X.X"
@@ -47,33 +53,39 @@
         var /GLOBAL my_ver
         StrCpy $my_ver "X.X.X.X"  <-- file version goes here
 
-6) Generate installer exe by compiling winpcap-nmap.nsi using the
+ 7) Generate installer exe by compiling winpcap-nmap.nsi using the
    running the command
         makensis winpcap-nmap.nsi
    makensis is part of the "Nullsoft Scriptable Install System" at
    http://nsis.sourceforge.net/.
 
-7) Give the installer a test, make sure the correct version appears in
+ 8) Give the installer a test, make sure the correct version appears in
    the installer's name and in Add/Remove Programs. You may also want to
-   try installing it when it is already installed or an older version is
-   installed.
+   try installing it when it is already installed or a different version is
+   installed. If the version to be installed is different from the one
+   currently installed the user will prompted to replace the installed
+   version. If version to be installed is already present, the user will be
+   informed that installation will be skipped and the installer will exit.
 
-8) Open mswin32/nsis/Nmap.nsi and update the references to the winpcap
+ 9) Open mswin32/nsis/Nmap.nsi and update the references to the winpcap
    installer's name. You should only have to change the version number.
    The section you need to look at starts like this:
         Section "WinPcap X.X" SecWinPcap
+   Also change the component string "DESC_SecWinPcap" in the section that
+   starts like this:
+        ;Descriptions
 
-9) Download the WinPcap developer package
+10) Download the WinPcap developer package
    (http://www.winpcap.org/devel.htm) and replace all the files in
    mswin32/lib/ with the new versions inside the package.
 
-10) Build the Nmap installer. The best way to do this is to run "make" in
+11) Build the Nmap installer. The best way to do this is to run "make" in
    the mswin32 directory. This will build Nmap and run makensis for you.
    Test the installer. You may want to try it with Nmap already
    installed and with different versions installed. Also check that
    everything appears in Add/Remove Programs correctly.
 
-11) Test Nmap functionallity that uses WinPcap (raw packet scans, raw
+12) Test Nmap functionallity that uses WinPcap (raw packet scans, raw
    packet pings, traceroute).
 
-12) Sit back and have a cup of coffee, you deserve it :)
+13) Sit back and have a cup of coffee, you deserve it :)

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/