LMAO!! Warriors of the net!! Yeah, unfortunately I have seen that lol.. wow flashback. How about "dont copy that floppy?" lol ok ok...
No one ever said anything about rewriting the content of packets (that I remember)... but it only helps support the theory that your computer is more of a router than a proxy during a mitm since no content is being rewritten... > In order to perform a MitM attack, you have to open up and inspect > the packets You wouldnt inspect or rewrite anything more than a router would. All you have to do is adjust the headers (just like the router does) for local traffic then send the packets out the NIC that you are monitoring. Ethereal, Ettercap or whatever monitor you are using reads the rest of the packet. > > You aren't TECHNIALLY > I don't think you know enough about me to be able to say that. I DIDNT say that. Comment me in context please. If you simply misunderstood that then it meant "you (as in your computer) arent TECHNICALLY a router OR a proxy during a mitm so it doesnt matter" Ps... Outlook says 'ettercap' is misspelled and wants to correct it with 'Ethereal' and I found it amusing and thought I'd share. -----Original Message----- From: Tom Chiverton [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 04, 2006 11:53 AM To: CF-Talk Subject: Re: Break it down for n00bs: security problems of non-SSL intrane t? On Wednesday 04 October 2006 16:12, Bobby Hartsfield wrote: > That in a mitm, you route traffic in place of the router and that makes you > NOT a proxy but more so a router? A router takes packets from one network, and passes them to another, possibly rewriting the headers on the way. A router does not rewrite the contents of the packets. In order to perform a MitM attack, you have to open up and inspect the packets, while acting as a proxy for both the end points (on the route between them). That's much more like what a HTTP or NATP proxy does. Haven't you seen 'Warriors of the Net' :-) > It doesnt much matter it was a stupid argument and I shouldn't have bit... > You aren't TECHNIALLY I don't think you know enough about me to be able to say that. FWIW I have a long standing background in sys. admin. (started out on Suns and a bit of Windows, moved to Linux of various kinds) and security (one of my jobs was to do just that), as well as ColdFusion (I remember when UDFs were new !). -- Tom Chiverton Helping to continuously develop one-to-one markets **************************************************** This email is sent for and on behalf of Halliwells LLP. Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at St James's Court Brown Street Manchester M2 2JF. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by the Law Society. CONFIDENTIALITY This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 8008. For more information about Halliwells LLP visit www.halliwells.com. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:255436 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
