Home page logo

basics logo Security Basics mailing list archives

RE: How to stop Admins from sniffing ?
From: "Weir, Jason" <jason.weir () nhrs org>
Date: Thu, 27 Jul 2006 12:12:16 -0400


My first question would be why would you want to stop them..  Any
competent IT security professional will be and should be monitoring
anything and everything that goes across their wire.  In my opinion that
is their job.

If you are trying to hide something that's a different story.  If its
web traffic you can use an hppts connection to one of the many
anonymizer services out there.  Ethereal would only show encrypted
packets to\from the anonymizer site and not reveal the actual site you
are going to.  This would prevent network sniffing of web traffic only.
There are many other ways to see what's going on..

It sounds like you have a privacy issue but if you are using company
equipment and services you have no expectation of privacy and they have
every right to monitor everything you do

Jason Weir
Systems Administrator
New Hampshire Retirement System

-----Original Message-----
From: swap_tek () yahoo co uk [mailto:swap_tek () yahoo co uk] 
Sent: Wednesday, July 26, 2006 1:14 AM
To: security-basics () securityfocus com
Subject: How to stop Admins from sniffing ?

Hey List

I work in a small organisation and the system and network administrators
here are constantly monitoring all data in the network. I have seen them
running Etherreal on their systems and from their talks i am sure that
they know who is doing what. I m using windows XP and i have a personal
firewall installed which pop's up every few minutes saying that there is
a port scan attack going on. And when i looked up that IP address it
belongs to tbe system being used by the administrator. I have tried
talking to my bosses about this but not happened ( maybe the admins
convinced them that they are not doing anything like that or its
happening by bosses permisson).  i know since they are in same network
as me its easy for them to sniff all traffic and everything.

What i want to know from you ppl is that is there is anyway way to stop
this ? is it possible for me to encrypt all traffic going out from my
system ? 

I have never used a Anti-Sniffer but can they help ? any way out ?

Thanks in advance


This list is sponsored by: Norwich University

The NSA has designated Norwich University a center of Academic Excellence
in Information Security. Our program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Using interactive e-Learning technology, you can earn this esteemed degree,
without disrupting your career or home life.


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]