lsof is great also.
-----Original Message-----
From: Erik Tayler [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, February 27, 2002 2:30 PM
To: frederic de-villamic; [EMAIL PROTECTED]
Subject: Re: How to search for sniffers on my RedHat Machine?
Or check your syslog messages for devices leaving and entering promicuous
mode. I'm not for if all distributions of Linux log such data to syslog, I'd
imagine they do. I run SuSE Linux 7.2, and it does.
[EMAIL PROTECTED]
On Tuesday 26 February 2002 11:54 am, frederic de-villamic wrote:
> On Mon, Feb 25, 2002 at 07:20:13PM +0530, Krishna wrote:
> > -----BEGIN PGP SIGNED MESSAGE-----
> > Hash: MD5
> >
> > Monday, February 25, 2002 7:16:40 PM
> > Hello ,
> >
> > I used Anasil to detect sniffers on my network. It tested
> > positive on some of the machines. Now how should I search for
> > these sniffers on the machines. The machines are running on
> > RedHat Linux 6.0.
> >
> > Any help would be appreciated
> >
> > - --
> > regards,
> > Krishna mailto:[EMAIL PROTECTED]
> >
> > Krishna Shekhar
> > Network Administrator
> > Wiplash.com
> >
> > __ | / /___ _/__ __ \__ /___ |_ ___/__ / / /
> > __ | /| / / __ / __ /_/ /_ / __ /| |____ \__ /_/ /
> > __ |/ |/ / __/ / _ ____/_ /___ ___ |___/ /_ __ /
> > ____/|__/ /___/ /_/ /_____/_/ |_/____/ /_/ /_/
> >
> >
> > http://wiplash2000.com
> >
> > -----BEGIN PGP SIGNATURE-----
> > Version: 2.6
> >
> > iQCVAwUAPHpBGeg6KamseJ9hAQGwuAP+LFRw5Q9UZdI6EDtbe2WIJ5nXKyP0vPHj
> > 9WioR+ivqZe4QrZSlddzvsCeGg9QJO4c5SeztRtruSCsUpgjdakTUrYY/skWwXa5
> > bbjwYu3Ng+8fLKQglcKRS0HUDxZfVO9BQSB64o6285v7sQS10QKU8D1qnxMmVTQQ
> > +GYMSqzVgkU=
> > =Wmns
> > -----END PGP SIGNATURE-----
>
> you should just try ifconfig and then see if the ethernet card is in
> promiscuous mode. No need some tools.
> neuro
