Re: AW: security-basics Digest 18 Jun 2003 22:09:15 -0000 Issue 618
From: Rodney Green (rgreen_at_cinchhost.com)
Date: 06/26/03
- Previous message: security_at_rexwire.com: "RE: Simple Wireless Question"
- In reply to: David Wallraff: "Re: AW: security-basics Digest 18 Jun 2003 22:09:15 -0000 Issue 618"
- Next in thread: Craig Janssen: "Re: AW: security-basics Digest 18 Jun 2003 22:09:15 -0000 Issue 618"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: "David Wallraff" <wall0448@ece.umn.edu> Date: Thu, 26 Jun 2003 15:52:00 -0400
Another possibility with sniffing on a switch is to use the switch's span
port, if it has one. You would enable port monitoring and configure it on a
specific port and then connect the machine to be used as the sniffer to that
port. That machine would then be able to see all traffic on the switch. Of
course, this will only work if you have physical access to the switch.
Rod
----- Original Message -----
From: "David Wallraff" <wall0448@ece.umn.edu>
To: "Meidinger Christopher" <christopher.meidinger@badenIT.de>
Cc: "'Hilal Hussein'" <hilalma@hotmail.com>; "Security-Basics@Securityfocus.
Com (E-Mail)" <security-basics@securityfocus.com>
Sent: Wednesday, June 25, 2003 11:32 AM
Subject: Re: AW: security-basics Digest 18 Jun 2003 22:09:15 -0000 Issue 618
why is it harder to sniff over a switced network? i understand it's
becasue of the switch (natch), but what makes it more difficult?
dave
On Wed, 25 Jun 2003, Meidinger Christopher wrote:
> Hello Hilal,
>
> Yes, there are many tools that will do that. dsniff, ettercap, ethereal
and
> MANY others will read your password as it goes by on the wire. It is
> slightly more difficult on a switched network, but it can still be done.
>
> You should not use telnet at all, use ssh (www.openssh.org) instead. The
> windows client PuTTY is the most common choice to connect over ssh from
> windows. As far as starting an ssh server on the firewall, you should be
> able to do that in the same way that you started the telnet server.
>
> If you need more exact help, post to the list what type of firewall you
are
> using, and i am certain someone will help you get started.
>
> (Disclaimer: based on your question, you should [IMHO] definately read up
a
> bit on security before configuring a firewall)
>
> badenIT GmbH
> System Support
>
> Chris Meidinger
> Tullastrasse 70
> 79108 Freiburg
>
>
> -----Ursprüngliche Nachricht-----
> Von: Hilal Hussein [mailto:hilalma@hotmail.com]
> Gesendet: Tuesday, June 24, 2003 10:08 AM
> An: bugtraq@planetcobalt.net; security-basics@securityfocus.com
> Betreff: Re: security-basics Digest 18 Jun 2003 22:09:15 -0000 Issue 618
>
>
>
>
> Hello All,
>
> i am not sure if i am asking the right question within the same
subject,but
> i am configuring the firewall throught the telnet connecting / from winxp
> workstation.
>
> Is there any possibility for any internal user to use any tools that will
> haijack my telnet password - password for the firewall too!, and what are
> the measurements for securing the telnet session.
>
> with regards,
> Hilal Hussein
>
> _________________________________________________________________
> STOP MORE SPAM with the new MSN 8 and get 2 months FREE*
> http://join.msn.com/?page=features/junkmail
>
>
> --------------------------------------------------------------------------
-
> Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts!
> The Gartner Group just put Neoteris in the top of its Magic Quadrant,
> while InStat has confirmed Neoteris as the leader in marketshare.
>
> Find out why, and see how you can get plug-n-play secure remote access in
> about an hour, with no client, server changes, or ongoing maintenance.
>
> Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
> --------------------------------------------------------------------------
-- > > -------------------------------------------------------------------------- - > Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts! > The Gartner Group just put Neoteris in the top of its Magic Quadrant, > while InStat has confirmed Neoteris as the leader in marketshare. > > Find out why, and see how you can get plug-n-play secure remote access in > about an hour, with no client, server changes, or ongoing maintenance. > > Visit us at: http://www.neoteris.com/promos/sf-6-9.htm > -------------------------------------------------------------------------- -- > > --------------------------------------------------------------------------- Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts! The Gartner Group just put Neoteris in the top of its Magic Quadrant, while InStat has confirmed Neoteris as the leader in marketshare. Find out why, and see how you can get plug-n-play secure remote access in about an hour, with no client, server changes, or ongoing maintenance. Visit us at: http://www.neoteris.com/promos/sf-6-9.htm ---------------------------------------------------------------------------- --------------------------------------------------------------------------- Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts! The Gartner Group just put Neoteris in the top of its Magic Quadrant, while InStat has confirmed Neoteris as the leader in marketshare. Find out why, and see how you can get plug-n-play secure remote access in about an hour, with no client, server changes, or ongoing maintenance. Visit us at: http://www.neoteris.com/promos/sf-6-9.htm ----------------------------------------------------------------------------
- Previous message: security_at_rexwire.com: "RE: Simple Wireless Question"
- In reply to: David Wallraff: "Re: AW: security-basics Digest 18 Jun 2003 22:09:15 -0000 Issue 618"
- Next in thread: Craig Janssen: "Re: AW: security-basics Digest 18 Jun 2003 22:09:15 -0000 Issue 618"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
