All, A peer recently told me that the a network topology consisting of internal servers routing traffic through a firewall to the internet was a security hole since the session could either be hijacked or be hacked using a MITM technique.
Example: Internal_server --> PIX NAT --> Internet partner I understand the fundamentals behind hijacking and MITM attacks, but it would seem to me that the only way that an attacker could pull of this type of an attack would be to compromise a host on the same switch/hub that the firewall is on. Is this this a correct assumption? Can attacker A in California hijack User B in Ohio shopping on Site C in Florida without compromising some key piece of equipment in between B and C first? My apologies for the long winded question. Thanks in advance for your insight. Thad __________________________________________________ Do You Yahoo!? Yahoo! Games - play chess, backgammon, pool and more http://games.yahoo.com/
