Hi,
On Fri, 21 Oct 2005 19:19:15 + (UTC)
James [EMAIL PROTECTED] wrote:
Well, after much ado, it seems quite easy (trivial) to hide an ethernet
interface, while being able to collect reems of local ethernet traffic
based data, from both snort and ethereal.
No, it's not that easy -
Hello,
(Stealth ethernet saga continues)
Well, after much ado, it seems quite easy (trivial) to hide an ethernet
interface, while being able to collect reems of local ethernet traffic
based data, from both snort and ethereal.
Here's the normal ethernet interace on a portable:
/sbin/ifconfig -a
Justin Patrin schrieb:
I would suggest using iptables to simply DROP all outgoing packets.
This won't make the host be stealth. Quite the opposite - it's
MUCH more visible.
Alexander Skwar
--
gentoo-user@gentoo.org mailing list
Renat Golubchyk schrieb:
I don't really know how to do this, but the first thing that came into
my mind was to configure a firewall so that it drops every packet going
outside.
Again: This is *NOT* stealth. Such a broken system is very much
visible.
Alexander Skwar
--
gentoo-user@gentoo.org
On Wed, 19 Oct 2005 22:50:51 +0200 Alexander Skwar
[EMAIL PROTECTED] wrote:
Justin Patrin schrieb:
I would suggest using iptables to simply DROP all outgoing packets.
This won't make the host be stealth. Quite the opposite - it's
MUCH more visible.
Why?
Cheers,
Renat
--
Probleme kann
Renat Golubchyk schrieb:
On Wed, 19 Oct 2005 22:50:51 +0200 Alexander Skwar
[EMAIL PROTECTED] wrote:
Justin Patrin schrieb:
I would suggest using iptables to simply DROP all outgoing packets.
This won't make the host be stealth. Quite the opposite - it's
MUCH more visible.
Why?
If
Hello,
For a variety of reasons, I need to be able to make an ethernet
interface on a gentoo system, change into listen only (stealth mode).
Kind of like half duplex, so to speak. Any simple tricks?
Just disabling all responses from the ethernet interface would do.
I know I can just use
On Tue, 2005-10-18 at 23:19 +, James wrote:
Hello,
For a variety of reasons, I need to be able to make an ethernet
interface on a gentoo system, change into listen only (stealth mode).
Kind of like half duplex, so to speak. Any simple tricks?
Just disabling all responses from the
On 10/18/05, James [EMAIL PROTECTED] wrote:
Hello,
For a variety of reasons, I need to be able to make an ethernet
interface on a gentoo system, change into listen only (stealth mode).
Kind of like half duplex, so to speak. Any simple tricks?
Just disabling all responses from the ethernet
Hi!
On Tue, 18 Oct 2005 23:19:56 + (UTC) James
[EMAIL PROTECTED] wrote:
For a variety of reasons, I need to be able to make an ethernet
interface on a gentoo system, change into listen only (stealth mode).
Kind of like half duplex, so to speak. Any simple tricks?
Just disabling all
wirecutters/stanley knife as appropriate - cut the tx wires in the cable
to the card. In one case where the box had to absolutely silent (hacker
proof, undetectable monitoring - think it was the honeypot project where
I saw this one?), the wires from the socket to the circuit board on the
card
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
James wrote:
Hello,
For a variety of reasons, I need to be able to make an ethernet
interface on a gentoo system, change into listen only (stealth mode).
Kind of like half duplex, so to speak. Any simple tricks?
Just disabling all responses from the
12 matches
Mail list logo
