Security Basics mailing list archives
Re: switched n/w
From: "Gautam R. Singh" <gautam.singh () gmail com>
Date: Wed, 8 Dec 2004 14:00:09 +0530
Hi Kaushal, Check for arp spoofing, MiM attacks too. Some one could be using ettercap to inject characters in to the connections. Program like 'ettercap', ' parasite' , ' Cain&Abel' might have been used in such attacks. Regrards ~gRs -- Gautam R. Singh [mcp,ccna,cspfa,unemployed] t: +91 9848 525 074 | pgp: http://gautam.techwhack.com/key/ | ymsgr: er-333 | msn: ro0_@hotmail On Wed, 08 Dec 2004 00:00:24 +0530, kaushal <kaushal () rocsys com> wrote:
Hi, Iam a bit new to network securities.We have a switched network and to my knowledge a hosts' data cannot be sniffed by other host by runnning tcpdump.But Iam receiving complaints from few users that their data is being changed/manipulated.Is this possible? How can I avoid this at the host level?Does this mean the server has been compromised?Any help or pointer in this aspect would be highly appreciated. thanks in advance. kaushal.
Current thread:
- switched n/w kaushal (Dec 07)
- RE: switched n/w David Gillett (Dec 08)
- Re: switched n/w the.soylent (Dec 08)
- RE: switched n/w Rishi Pande (Dec 08)
- RE: switched n/w Chris Cirullo (Dec 09)
- Re: switched n/w Rino Mardo (Dec 08)
- Message not available
- Re: switched n/w Gautam R. Singh (Dec 08)
- Re: switched n/w M. Shirk (Dec 09)
- Re: switched n/w Gautam R. Singh (Dec 08)
- Re: switched n/w Andreas Putzo (Dec 08)
- Re: switched n/w Alexander Klimov (Dec 08)
- Re: switched n/w Grim (Dec 08)
- Re: switched n/w Jacob Weeks (Dec 08)
- Re: switched n/w q q (Dec 09)
- Re: switched n/w easternerd (Dec 10)
- Re: switched n/w q q (Dec 09)
- Re: switched n/w xyberpix (Dec 09)
- <Possible follow-ups>
- RE: switched n/w Jeff Gercken (Dec 08)
- Re: switched n/w Ivan Coric (Dec 08)