On Thu, Nov 4, 2010 at 2:36 PM, Charles Curley < [email protected]> wrote: > > The reason I specify "hub" is that one difference between a hub and a > switch is that a hub simply propagates data that comes in on one port > to all other ports. A switch only propagates an incoming packet to the > next port on that packet's journey, e.g. the firewall. Since the swithc > operates at the Ethernet level, it should hide Internet traffic from > the other machines on the LAN.
For a switched network you'd have to combine it with something like ARP poisoning or DNS hijacking. WPA doesn't broadcast and is "immune" to this attack, but the recently discovered vulnerabilities on WPA would allow a connected client to potentially sniff other clients' traffic making this specific attack possible. —Devlin /* PLUG: http://plug.org, #utah on irc.freenode.net Unsubscribe: http://plug.org/mailman/options/plug Don't fear the penguin. */
