Re: Cable vs DSL

• Previous message: Juan Carlos: "Re: Something new?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: "Chris McNab" <chris.mcnab@trustmatta.com>
To: <security-basics@securityfocus.com>
Date: Tue, 22 Apr 2003 18:30:08 +0100

Hi,

> I'm not sure this is the case in all telco's setups - For example, I
> am on a cable modem at home, and I can't see *any* traffic but my
> own... (Which is how I want it anyways)
>
> jamie
>
> Neal K. Groothuis wrote:
>
> > DSL. With cable, you're on a broadcast medium, and therefore
> everyone
> > on your segment can see your traffic and vice-versa.
> >
> > - neal

Matta proved the problem in cable setups here in the UK with the following
white paper:

http://www.trustmatta.com/downloads/Matta_Broadband_Insecurity.pdf

A Win32 / WinPcap tool called ARPsniffer.exe can be used to good effect in
this case. Because the cable medium is effectively switched, you must
perform ARP cache poisoning to re-direct and sniff traffic.

Regards,

Chris

Chris McNab
Technical Director

Matta Security Limited
18 Noel Street
London W1F 8GN

Tel: 0870 077 1100
Mob: 0788 626 0878

This e-mail was sent from Matta Security Limited. The information contained
in this message is confidential, may be privileged, and is intended for the
addressee(s) only. If you have received this message in error please notify
the originator immediately. The unauthorised use, disclosure, copying or
alteration of this message is strictly forbidden. Matta Security Limited
does not warrant that any attachments are free from viruses or other
defects. Matta Security Limited will not be liable for direct, special,
indirect or consequential damages arising from alteration of the contents of
this message by a third party or as a result of any virus being passed on.

---------------------------------------------------------------------------
Attend Black Hat Briefings & Training Europe, May 12-15 in Amsterdam, the
world's premier event for IT and network security experts. The two-day
Training features 6 hand-on courses on May 12-13 taught by professionals.
The two-day Briefings on May 14-15 features 24 top speakers with no vendor
sales pitches. Deadline for the best rates is April 25. Register today to
ensure your place. http://www.securityfocus.com/BlackHat-security-basics
----------------------------------------------------------------------------

• Previous message: Juan Carlos: "Re: Something new?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: interoperability of VPN checkpoint FW1 to ISA ... Attend Black Hat Briefings & Training Europe, May 12-15 in Amsterdam, the ... Training features 6 hand-on courses on May 12-13 taught by professionals. ... Register today to ... (Focus-Microsoft) RE: interoperability of VPN checkpoint FW1 to ISA ... However, CheckPoint has one little ... Attend Black Hat Briefings & Training Europe, May 12-15 in Amsterdam, the ... Training features 6 hand-on courses on May 12-13 taught by professionals. ... (Focus-Microsoft) RE: interoperability of VPN checkpoint FW1 to ISA ... If you are not the intended recipient be aware that any ... Attend Black Hat Briefings & Training Europe, May 12-15 in Amsterdam, the ... Training features 6 hand-on courses on May 12-13 taught by professionals. ... (Focus-Microsoft) Re: Zenworks ... Attend Black Hat Briefings & Training Europe, May 12-15 in Amsterdam, the ... world's premier event for IT and network security experts. ... Training features 6 hand-on courses on May 12-13 taught by professionals. ... (Security-Basics) RE: Log on the domain ... whether a given user account can be used from the "console" keyboard ... Attend Black Hat Briefings & Training Europe, May 12-15 in Amsterdam, the ... Training features 6 hand-on courses on May 12-13 taught by professionals. ... (Security-Basics)