> I sincerely doubt that I will ever accomplish a "real" attack, since > I would have to be either a pen tester or a trespasser to do so
<sarcasm> Yeah, because you know... those are the only 2 reasons that anyone would try any such thing... </sarcasm> > "Routing" is not routing Uhh... ok... is it switching? lol Each conversation with you is a reminder as to why I filtered you in the first place; You'll argue about subjects that you admittedly know little or nothing about... now if I could just remember why the hell I ever took that filter off... bye-bye Dave. -----Original Message----- From: Dave Watts [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 04, 2006 9:28 AM To: CF-Talk Subject: RE: Break it down for n00bs: security problems of non-SSL intrane t? > Yes the word "router" has a specific meaning and this IS it. No, it isn't. > When you actually accomplish a simple mitm, let me know which > one you think it is then. I sincerely doubt that I will ever accomplish a "real" attack, since I would have to be either a pen tester or a trespasser to do so. However, I have used ettercap in a lab environment, and that was pretty simple, although I haven't gotten it working on Windows yet. > You take over for the gateway/router to 'outside' of the > network that you are on and ROUTE traffic in it's place. Routers strip the MAC address info from packets on one network, then rewrite the destination MAC address for the other network. ARP cache poisoning is not routing. > If that's not a router I don't know what is apparently and I'll > just stop writing my own firmware for them. If I was going to be flippant, this would be the ideal location. > You don't have to simply be between one client and the > outside world. You can be directing traffic for the entire > network... or 'routing' traffic for the entire network. "Routing" is not routing. Again, routing means something quite specific. Maybe I'm failing to understand what you're trying to say, though. A diagram might be helpful. At this point, I'll simply agree to disagree, if that's ok with you. My thumbs are quite tired. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:255401 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
