----- Original Message -----
From: "Ronneil Camara" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Sunday, July 01, 2001 1:17 AM
Subject: RE: [plug] Allowing root to Telnet
> > > just to remind you guys even you are in switched or vlan
> > network, you can
> > > still listen. the most important thing is all your data is
> > in encrypted
> > > form.
> >
> > But can it listen to data not destined or not coming from itself?
> >
> > I presume everyone on this list would appreciate and benefit from
> > any info to support this claim...
>
> Hi Mike,
>
> How are you now?
>
> It's still possible to listen even on a switched network. This is what you
> call arp spoofing.
> You can actually configure a port on the switch and set it as a monitoring
> port or a diagnostic port.
> Pero, if you're not the switch admin, and you still want to sniff packets,
> then you can make use
> of dsniff, http://www.monkey.org/~dugsong. I have actually hijack a telnet
> session on the switch.
> When I first learned the tool, I was really amazed. It's actually another
> tool.
guys,
onie revealed the basics and hoping to use this just to security audit
your network and not for bad intentions.
onie,
the solution for arp spoofing is to configure properly every port on
your switch to allow only those specific arp address to pass thru to that
port by using static address.
fooler.
_
Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
To subscribe to the Linux Newbies' List: send "subscribe" in the body to
[EMAIL PROTECTED]
