hello all, I saw this:
http://www.althes.fr/ressources/avis/smartspoofing.htm on bugtraq. it describes a system for spoofing using arp cache poisoning, NAT and routing. they present it as a new attack that works against pretty much all platforms (using different ways to poison the arp cache depending on which OS is being attacked) and with special mention of windows as being much easier to arp-poison than the others (i think that's what "static ARP entry can always be overwritten using a fake ARP message." means, with reference to 9x/NT/2K, no mention of XP, but that probably goes under 2K). the attack seems to be pretty easy to mount. but i don't really know much about the whole thing. a discussion on list would be enlightening. tiger -- Gerald Timothy Quimpo tiger*quimpo*org gquimpo*sni-inc.com tiger*sni*ph Veritas liberabit vos. Law pain i reviear mistar aen; (Not all who wander are lost) _ Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph To leave: send "unsubscribe" in the body to [EMAIL PROTECTED] Fully Searchable Archives With Friendly Web Interface at http://marc.free.net.ph To subscribe to the Linux Newbies' List: send "subscribe" in the body to [EMAIL PROTECTED]
