> -----Original Message-----
> From: fooler [mailto:[EMAIL PROTECTED]]
> Sent: Sunday, July 01, 2001 3:11 AM
> To: [EMAIL PROTECTED]
> Subject: Re: [plug] Allowing root to Telnet
>
>
> ----- Original Message -----
> From: "Ronneil Camara" <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Sent: Sunday, July 01, 2001 1:17 AM
> Subject: RE: [plug] Allowing root to Telnet
>
>
> > > > just to remind you guys even you are in switched or vlan
> > > network, you can
> > > > still listen. the most important thing is all your data is
> > > in encrypted
> > > > form.
> > >
> > > But can it listen to data not destined or not coming from itself?
> > >
> > > I presume everyone on this list would appreciate and benefit from
> > > any info to support this claim...
> >
> > Hi Mike,
> >
> > How are you now?
> >
> > It's still possible to listen even on a switched network.
> This is what you
> > call arp spoofing.
> > You can actually configure a port on the switch and set it
> as a monitoring
> > port or a diagnostic port.
> > Pero, if you're not the switch admin, and you still want to
> sniff packets,
> > then you can make use
> > of dsniff, http://www.monkey.org/~dugsong. I have actually
> hijack a telnet
> > session on the switch.
> > When I first learned the tool, I was really amazed. It's
> actually another
> > tool.
>
> guys,
>
> onie revealed the basics and hoping to use this just to
> security audit
> your network and not for bad intentions.
>
> onie,
>
> the solution for arp spoofing is to configure properly
> every port on
> your switch to allow only those specific arp address to pass
> thru to that
> port by using static address.
>
You got it, MAC ADDR on specific port. Medyo matrabaho lang ang mag encode
sa switch. :p
-onie
_
Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
To subscribe to the Linux Newbies' List: send "subscribe" in the body to
[EMAIL PROTECTED]
