TECTED]>; "[EMAIL PROTECTED]
Com (E-Mail)" <[EMAIL PROTECTED]>
Sent: Wednesday, June 25, 2003 11:32 AM
Subject: Re: AW: security-basics Digest 18 Jun 2003 22:09:15 - Issue 618
why is it harder to sniff over a switced network? i understand it's
becasue of the swit
From: David Wallraff <[EMAIL PROTECTED]>
To: Meidinger Christopher <[EMAIL PROTECTED]>
CC: "'Hilal Hussein'" <[EMAIL PROTECTED]>,"[EMAIL PROTECTED]
Com (E-Mail)" <[EMAIL PROTECTED]>
why is it harder to sniff over a switced network? i understand it's
becasue of the switch (natch), but what makes i
On Wed, 2003-06-25 at 11:32, David Wallraff wrote:
> why is it harder to sniff over a switced network? i understand it's
> becasue of the switch (natch), but what makes it more difficult?
Because when you fire up ettercap to look around, you now have to poison
the switch* first.
* Disclaimer:
IL PROTECTED] Com (E-Mail)
> Subject: Re: AW: security-basics Digest 18 Jun 2003 22:09:15
> - Issue
> 618
>
>
> why is it harder to sniff over a switced network? i understand it's
> becasue of the switch (natch), but what makes it more difficult?
> dave
>
&
All connections on a Hub are in the same collision domain (meaning they
all see (can sniff) each others traffic)
All connections on a switch are in separate collision domains (meaning
they only see (sniff) traffic directed to them and broadcast/multicast
traffic)
Mitchell
> why is it harder
In the heirarch of network devices, a repeater is the stupidest. A hub
is a multiport repeater. What goes in one port goes out off of the
others. A *switch* otoh, actually looks at its input. At, methinks,
OSI-2, there is a hardware address. A switch looks at that address. It
keeps a list of
ECTED]
Gesendet: Wednesday, June 25, 2003 5:33 PM
An: Meidinger Christopher
Cc: 'Hilal Hussein'; [EMAIL PROTECTED] Com (E-Mail)
Betreff: Re: AW: security-basics Digest 18 Jun 2003 22:09:15 - Issue
618
why is it harder to sniff over a switced network? i understand it's
becasue
why is it harder to sniff over a switced network? i understand it's
becasue of the switch (natch), but what makes it more difficult?
dave
On Wed, 25 Jun 2003, Meidinger Christopher wrote:
> Hello Hilal,
>
> Yes, there are many tools that will do that. dsniff, ettercap, ethereal and
> MANY othe
Hello Hilal,
Yes, there are many tools that will do that. dsniff, ettercap, ethereal and
MANY others will read your password as it goes by on the wire. It is
slightly more difficult on a switched network, but it can still be done.
You should not use telnet at all, use ssh (www.openssh.org) instea