On Mon, Aug 16, 2004 at 02:24:00PM +0200, Ruben de Groot wrote:
On Sun, Aug 15, 2004 at 07:53:10PM -0700, Kevin Stevens typed:
A lot of network scanners also trigger on NICS in promiscuous mode
(there's a way to detect them, I forget the details at the moment)
because admins want to
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
horio shoichi wrote:
| On Mon, 16 Aug 2004 14:24:00 +0200
| Ruben de Groot [EMAIL PROTECTED] wrote:
|
|On Sun, Aug 15, 2004 at 07:53:10PM -0700, Kevin Stevens typed:
|
|A lot of network scanners also trigger on NICS in promiscuous mode
|(there's a way
On Sun, Aug 15, 2004 at 07:53:10PM -0700, Kevin Stevens typed:
A lot of network scanners also trigger on NICS in promiscuous mode
(there's a way to detect them, I forget the details at the moment)
because admins want to know if any hosts are out there sniffing.
How sure are you about that?
Promiscuous mode can also be enabled on most hardware routers. A
hardware router in front of a private network with promiscuous mode
enabled allows public internet users to access (sniff) all the
traffic passing through the router as well as insert packets. This
is major security leak and one
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
JJB wrote:
| Promiscuous mode can also be enabled on most hardware routers. A
| hardware router in front of a private network with promiscuous mode
| enabled allows public internet users to access (sniff) all the
| traffic passing through the router as
In the last episode (Aug 16), Ruben de Groot said:
On Sun, Aug 15, 2004 at 07:53:10PM -0700, Kevin Stevens typed:
A lot of network scanners also trigger on NICS in promiscuous mode
(there's a way to detect them, I forget the details at the moment)
because admins want to know if any hosts
On Mon, 16 Aug 2004 14:24:00 +0200
Ruben de Groot [EMAIL PROTECTED] wrote:
On Sun, Aug 15, 2004 at 07:53:10PM -0700, Kevin Stevens typed:
A lot of network scanners also trigger on NICS in promiscuous mode
(there's a way to detect them, I forget the details at the moment)
because admins
I was running security/rkhunter and it warns me about my network card being in
promiscuous mode. I have a few questions:
1) What exactly is promiscuous mode? (I've done some googling but haven't
found anything really clear)
2) Why might it be considered a bad thing?
3) How do I disable it if it
Aaron Dalton [EMAIL PROTECTED] wrote:
I was running security/rkhunter and it warns me about my network card
being in
promiscuous mode. I have a few questions:
1) What exactly is promiscuous mode? (I've done some googling but haven't
found anything really clear)
Promiscuous mode means the
Aaron Dalton wrote:
I was running security/rkhunter and it warns me about my network card being in
promiscuous mode. I have a few questions:
1) What exactly is promiscuous mode? (I've done some googling but haven't
found anything really clear)
2) Why might it be considered a bad thing?
3) How
Thank you so much for your replies! This makes much more sense now.
I am currently running Snort. I will examine its documentation to see if
promiscuous mode is really necessary. In the meantime, am I correct in
assuming the only threat is from local users? If so, currently all users are
Aaron Dalton wrote:
Thank you so much for your replies! This makes much more sense now.
I am currently running Snort. I will examine its documentation to see if
promiscuous mode is really necessary.
It is.
In the meantime, am I correct in
assuming the only threat is from local users?
Aaron Dalton wrote:
Thank you so much for your replies! This makes much more sense now.
I am currently running Snort. I will examine its documentation to see if
promiscuous mode is really necessary. In the meantime, am I correct in
assuming the only threat is from local users? If so,
Remko Lodder [EMAIL PROTECTED] wrote:
Reminder for bill: sniffing via bpf requires the same privileges whether
promisc. is set or not, so you always need to be root for sniffing data
of the line, that is when the permissions is not tampered with :).
Thanks #bsddocs (simon ;))
Really?
On Aug 15, 2004, at 15:32, Bill Moran wrote:
Remko Lodder [EMAIL PROTECTED] wrote:
Reminder for bill: sniffing via bpf requires the same privileges
whether
promisc. is set or not, so you always need to be root for sniffing
data
of the line, that is when the permissions is not tampered with :).
15 matches
Mail list logo