Home page logo
/

basics logo Security Basics mailing list archives

Re: switched n/w
From: "Gautam R. Singh" <gautam.singh () gmail com>
Date: Wed, 8 Dec 2004 14:00:09 +0530

Hi Kaushal,

Check for arp spoofing, MiM attacks too. Some one could be using
ettercap to inject characters in to the connections. Program like
'ettercap', ' parasite' , ' Cain&Abel' might have been used in such
attacks.

Regrards
~gRs

--
Gautam R. Singh
[mcp,ccna,cspfa,unemployed] t: +91 9848 525 074 | pgp:
http://gautam.techwhack.com/key/ | ymsgr: er-333 | msn: ro0_ () hotmail




On Wed, 08 Dec 2004 00:00:24 +0530, kaushal <kaushal () rocsys com> wrote:
Hi,
   Iam a bit new to network securities.We have a switched network and to
my knowledge a hosts' data cannot be sniffed by other host by runnning
tcpdump.But Iam receiving complaints from few users that their data is
being changed/manipulated.Is this possible?
How can I avoid this at the host level?Does this mean the server has
been compromised?Any help or pointer in this aspect would be highly
appreciated.

thanks in advance.

kaushal.




  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]