Home page logo

basics logo Security Basics mailing list archives

Re: switched n/w
From: Grim <nospam () nospam com>
Date: Wed, 8 Dec 2004 11:15:52 +0000


A switched network is not secure and is vulnerable to an man in the middle attack using arp packets to both the victim and switch to cause all packets between the two to be routed through the attackers computer. You could use a tool, called arpwatch I think, to monitor for this sort of activity. Google will help you here. Try searching for ettercap too.



On 7 Dec 2004, at 18:30, kaushal wrote:

Iam a bit new to network securities.We have a switched network and to
my knowledge a hosts' data cannot be sniffed by other host by runnning
tcpdump.But Iam receiving complaints from few users that their data is
being changed/manipulated.Is this possible?
How can I avoid this at the host level?Does this mean the server has
been compromised?Any help or pointer in this aspect would be highly

thanks in advance.


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]