Re: [Full-Disclosure] Caching a sniffer

From: Kenton Smith (ksmith_at_chartwelltechnology.com)
Date: 03/11/04

Next message: debian-security-announce_at_lists.debian.org: "[Full-Disclosure] [SECURITY] [DSA 461-1] New calife packages fix buffer overflow"

Previous message: James P. Saveker: "RE: [Full-Disclosure] Meth and hacking?[Scanned]"
In reply to: Patricio Bruna V.: "[Full-Disclosure] Caching a sniffer"
Next in thread: Mike Fratto: "RE: [Full-Disclosure] Caching a sniffer"
Reply: Mike Fratto: "RE: [Full-Disclosure] Caching a sniffer"
Reply: Mike Fratto: "RE: [Full-Disclosure] Caching a sniffer"
Reply: Mike Fratto: "RE: [Full-Disclosure] Caching a sniffer"
Reply: Mike Fratto: "RE: [Full-Disclosure] Caching a sniffer"
Reply: Mike Fratto: "RE: [Full-Disclosure] Caching a sniffer"
Reply: Mike Fratto: "RE: [Full-Disclosure] Caching a sniffer"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: pbruna@masev.cl
Date: Thu, 11 Mar 2004 09:49:42 -0700

I skimmed through some of the articles and they all have some good
information. Are you running a switched network? If you are then the
easiest way is to look at your traffic stats and find the port that
*all* traffic is going to.
If this doesn't make sense to you, then you should do some more research
on sniffers.

Kenton

On Wed, 2004-03-10 at 14:13, Patricio Bruna V. wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> How can i know if there a sniffer running in my network?
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.2.4 (GNU/Linux)
>
> iD8DBQFAT4UNT29IM+6ptNcRAoKlAJ9Kbk2yH4MKrQRNaz6OVM2Jai8/+QCgoUnx
> IXCJDuMJxTU9r/E5AhjW1fc=
> =LiUx
> -----END PGP SIGNATURE-----
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Next message: debian-security-announce_at_lists.debian.org: "[Full-Disclosure] [SECURITY] [DSA 461-1] New calife packages fix buffer overflow"

Previous message: James P. Saveker: "RE: [Full-Disclosure] Meth and hacking?[Scanned]"
In reply to: Patricio Bruna V.: "[Full-Disclosure] Caching a sniffer"
Next in thread: Mike Fratto: "RE: [Full-Disclosure] Caching a sniffer"
Reply: Mike Fratto: "RE: [Full-Disclosure] Caching a sniffer"
Reply: Mike Fratto: "RE: [Full-Disclosure] Caching a sniffer"
Reply: Mike Fratto: "RE: [Full-Disclosure] Caching a sniffer"
Reply: Mike Fratto: "RE: [Full-Disclosure] Caching a sniffer"
Reply: Mike Fratto: "RE: [Full-Disclosure] Caching a sniffer"
Reply: Mike Fratto: "RE: [Full-Disclosure] Caching a sniffer"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]