|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Brian Hartsfield (bhartsfield
GDATS.COM)Date: Mon Feb 05 2001 - 14:29:30 CST
At 07:02 PM 2/4/2001 +0100, Robert van der Meulen wrote:
>Hi,
>
>Quoting Salyars, Marty (marty.salyarsAMSC.BELVOIR.ARMY.MIL):
> > Can someone inside a switched NT network spoof a host to get
> > unauthorized access to resources. How easy or hard is it?
>Yes. Using tools like 'arpredirect' in combination with 'fragrouter' or the
>like, someone can redirect all trafic from a host to other hosts trough
>his/her own machine. Spoofing is easy then.
>Spoofing inside a switched network is usually no problem at all; sniffing
>inside a switched network is. You probably won't even need to 'arpredirect'
>to do the spoofing, unless we're talking a switch that knows his stuff.
Actually, sniffing isnt' that heard either. There are several ways to do
it such as making the switch you are a trunk port and you need all the
traffic. In order words, don't put a switch and VLANs in place and expect
that to be your security because they can be defeated.
Brian
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]