Re: AW: security-basics Digest 18 Jun 2003 22:09:15 -0000 Issue 618

TECTED]>; "[EMAIL PROTECTED] Com (E-Mail)" <[EMAIL PROTECTED]> Sent: Wednesday, June 25, 2003 11:32 AM Subject: Re: AW: security-basics Digest 18 Jun 2003 22:09:15 - Issue 618 why is it harder to sniff over a switced network? i understand it's becasue of the swit

Re: AW: security-basics Digest 18 Jun 2003 22:09:15 -0000 Issue 618

From: David Wallraff <[EMAIL PROTECTED]> To: Meidinger Christopher <[EMAIL PROTECTED]> CC: "'Hilal Hussein'" <[EMAIL PROTECTED]>,"[EMAIL PROTECTED] Com (E-Mail)" <[EMAIL PROTECTED]> why is it harder to sniff over a switced network? i understand it's becasue of the switch (natch), but what makes i

Re: AW: security-basics Digest 18 Jun 2003 22:09:15 -0000 Issue 618

On Wed, 2003-06-25 at 11:32, David Wallraff wrote: > why is it harder to sniff over a switced network? i understand it's > becasue of the switch (natch), but what makes it more difficult? Because when you fire up ettercap to look around, you now have to poison the switch* first. * Disclaimer:

RE: AW: security-basics Digest 18 Jun 2003 22:09:15 -0000 Issue 618

IL PROTECTED] Com (E-Mail) > Subject: Re: AW: security-basics Digest 18 Jun 2003 22:09:15 > - Issue > 618 > > > why is it harder to sniff over a switced network? i understand it's > becasue of the switch (natch), but what makes it more difficult? > dave > &

Re: AW: security-basics Digest 18 Jun 2003 22:09:15 -0000 Issue 618

All connections on a Hub are in the same collision domain (meaning they all see (can sniff) each others traffic) All connections on a switch are in separate collision domains (meaning they only see (sniff) traffic directed to them and broadcast/multicast traffic) Mitchell > why is it harder

Re: AW: security-basics Digest 18 Jun 2003 22:09:15 -0000 Issue 618

In the heirarch of network devices, a repeater is the stupidest. A hub is a multiport repeater. What goes in one port goes out off of the others. A *switch* otoh, actually looks at its input. At, methinks, OSI-2, there is a hardware address. A switch looks at that address. It keeps a list of

AW: AW: security-basics Digest 18 Jun 2003 22:09:15 -0000 Issue 618

ECTED] Gesendet: Wednesday, June 25, 2003 5:33 PM An: Meidinger Christopher Cc: 'Hilal Hussein'; [EMAIL PROTECTED] Com (E-Mail) Betreff: Re: AW: security-basics Digest 18 Jun 2003 22:09:15 - Issue 618 why is it harder to sniff over a switced network? i understand it's becasue

Re: AW: security-basics Digest 18 Jun 2003 22:09:15 -0000 Issue 618

why is it harder to sniff over a switced network? i understand it's becasue of the switch (natch), but what makes it more difficult? dave On Wed, 25 Jun 2003, Meidinger Christopher wrote: > Hello Hilal, > > Yes, there are many tools that will do that. dsniff, ettercap, ethereal and > MANY othe

AW: security-basics Digest 18 Jun 2003 22:09:15 -0000 Issue 618

Hello Hilal, Yes, there are many tools that will do that. dsniff, ettercap, ethereal and MANY others will read your password as it goes by on the wire. It is slightly more difficult on a switched network, but it can still be done. You should not use telnet at all, use ssh (www.openssh.org) instea