[geeks] ethernet switch insecurity
Greg A. Woods
woods at weird.com
Sat Jul 20 10:51:39 CDT 2002
[ On Friday, July 19, 2002 at 18:18:32 (-0400), Tim H. wrote: ]
> Subject: Re: [geeks] My first ebay sale
>
> Switches are better for network speed and security, you can't see other
> conversations on a switch. Small dumb switches you really cannot see
> other conversations at all, which makes sniffing difficult for diagnosis
> of problems, intelligent switches allow you to mirror ports, so you can
> sniff other conversations if you need to.
You're just not using the right tools -- no Ethernet switch is really
secure all by its lonesome from sniffing and other worse games, not even
if you've tried to lock down your MACs on a port-specific basis. There
are lots of attacks, some of them newly described in recent
publications. See BUGTRAQ (the list). :-)
--
Greg A. Woods
+1 416 218-0098; <g.a.woods at ieee.org>; <woods at robohack.ca>
Planix, Inc. <woods at planix.com>; VE3TCP; Secrets of the Weird <woods at weird.com>
More information about the geeks
mailing list