Skokan, Paul wrote: >I am running some FreeBSD boxes as various network monitoring hosts. The hosts have >multiple interfaces on them sniffing different network segments. The hosts have one >management interface with an IP address assigned to the interface and the other >ethernet interfaces do not have IP address assigned. I am wondering if there are any >vulnerabilities with having one of these monitoring interfaces sit on a public >network. Can the hosts be hacked at all on the monitoring interface without an IP >address...If so, how? > >Paul > Thats a really good question. The only way I can see it hapening is if either the NIC's broadcast any info over the network, a internel user knowing the MAC addresses and crawling their way in that way, or possibly scanning for NIC's in promiscous mode.
Ash
