Re: can my password be sniffed in this situation ?
From: patrick@klos.com
Date: 02/14/03
- Next message: Mimic: "Re: Strong Passwords Revisited"
- Previous message: Eric Osman: "Re: can my password be sniffed in this situation ?"
- In reply to: Eric Osman: "Re: can my password be sniffed in this situation ?"
- Next in thread: Walter Roberson: "Re: can my password be sniffed in this situation ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: patrick@klos.com Date: 14 Feb 2003 17:32:52 GMT
In article <3E4D21BC.1080900@rcn.com>,
Eric Osman <ericosman-nospam@rcn.com> wrote:
>
>The following sounds very easy to "arrange" by a hacker, see below.
>
>> However, the sniffer would have to be running on one of the routers at
>> your ISP, on the backbone router path from your ISP's network to the
>> destination network, or at the destination itself to see your packets going
>> past, and that's not something that's easy to arrange....
>
>Wouldn't any malicious hacker that has signed up as an RCN cable
>internet customer fall into the above category
No. Your cable modem prevents you from seeing all the traffic that
other cable customers may be generating. If you were to sniff the
ethernet coming out of your cable mode, you would only see broadcasts
and packets directed specifically to your system's MAC address. Unless
your cable modem(s) are misconfigured (illegally or otherwise), you can't
see other people's packets and they can't see yours.
>My whole purpose of starting this discussion is to make a case
>for telling RCN that the following instruction from their FAQ is
>actually a *** dangerous instruction *** that shouldn't be followed:
>
> **** dangerous instructions ??? ****
>
> If your space has not been created yet, simply type the following
> line into the Address or Location line in your browser and hit
> the Enter key. In this example, your user id is: smith and your
> password is: 123456. You will replace these with your own user id
> and password. 123456@ftp.rcn.com">ftp://smith:123456@ftp.rcn.com
As I mentioned above, no other ordinary customer will be able to see your
packets just as you cannot see theirs. With that in mind, the instructions
appear to be safe.
>Am I right ? Would the above instruction allow other RCN customers,
>if malicious, to sniff passwords of other customers ?
Nope.
============= For LAN Protocol Analysis, check out PacketView! =============
Patrick Klos Phone: (603) 471-2547
Klos Technologies, Inc. Email: patrick@klos.com
18 Farmhouse Rd. Web: http://www.klos.com/
Bedford, New Hampshire 03110 N 42:54.677 W 71:31.486
========== It's 99.9% of the lawyers that make the rest look bad! ==========
- Next message: Mimic: "Re: Strong Passwords Revisited"
- Previous message: Eric Osman: "Re: can my password be sniffed in this situation ?"
- In reply to: Eric Osman: "Re: can my password be sniffed in this situation ?"
- Next in thread: Walter Roberson: "Re: can my password be sniffed in this situation ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
