Security Basics mailing list archives
Re: switched n/w
From: Grim <nospam () nospam com>
Date: Wed, 8 Dec 2004 11:15:52 +0000
Hi,A switched network is not secure and is vulnerable to an man in the middle attack using arp packets to both the victim and switch to cause all packets between the two to be routed through the attackers computer. You could use a tool, called arpwatch I think, to monitor for this sort of activity. Google will help you here. Try searching for ettercap too.
Regards, G. On 7 Dec 2004, at 18:30, kaushal wrote:
Hi,Iam a bit new to network securities.We have a switched network and tomy knowledge a hosts' data cannot be sniffed by other host by runnning tcpdump.But Iam receiving complaints from few users that their data is being changed/manipulated.Is this possible? How can I avoid this at the host level?Does this mean the server has been compromised?Any help or pointer in this aspect would be highly appreciated. thanks in advance. kaushal.
Current thread:
- switched n/w kaushal (Dec 07)
- RE: switched n/w David Gillett (Dec 08)
- Re: switched n/w the.soylent (Dec 08)
- RE: switched n/w Rishi Pande (Dec 08)
- RE: switched n/w Chris Cirullo (Dec 09)
- Re: switched n/w Rino Mardo (Dec 08)
- Message not available
- Re: switched n/w Gautam R. Singh (Dec 08)
- Re: switched n/w M. Shirk (Dec 09)
- Re: switched n/w Gautam R. Singh (Dec 08)
- Re: switched n/w Andreas Putzo (Dec 08)
- Re: switched n/w Alexander Klimov (Dec 08)
- Re: switched n/w Grim (Dec 08)
- Re: switched n/w Jacob Weeks (Dec 08)
- Re: switched n/w q q (Dec 09)
- Re: switched n/w easternerd (Dec 10)
- Re: switched n/w q q (Dec 09)
- Re: switched n/w xyberpix (Dec 09)
- <Possible follow-ups>
- RE: switched n/w Jeff Gercken (Dec 08)
- Re: switched n/w Ivan Coric (Dec 08)
- Re: switched n/w miguel . dilaj (Dec 08)
- Re: switched n/w kaushal (Dec 08)
- Re: switched n/w H Carvey (Dec 08)
- Re: switched n/w Russell Gregg (Dec 08)