<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Penetration Testing: Re: [PEN-TEST] Spoofing switched networks

Re: [PEN-TEST] Spoofing switched networks

From: Ryan Russell <ryan_at_SECURITYFOCUS.COM>
Date: Tue, 6 Feb 2001 17:19:46 -0700

On Tue, 6 Feb 2001, Jason Brvenik wrote:

> As for switching, I'm fully aware that it's not a security mechanism
> that
> cannot be defeated easily. However that VLANs have no security impact is
> > news to me. Since VLANS are defined on physical switch port basis, how
> could
> they be used to receive or send traffic on other VLANs?

Because VLAN ports are under the control of the same software that switch
ports are. VLAN boundaries fall for the same classes of attack that MAC
address filtering does. There are even more features to attack for a
typical VLAN switch.

Ryan
Received on Feb 07 2001

This message: [ Message body ]
Next message: Shoten: "Re: [PEN-TEST] Spoofing switched networks"
Previous message: Tamas Foldi: "Re: [PEN-TEST] Expand right under Win2K"
In reply to: Jason Brvenik: "Re: [PEN-TEST] Spoofing switched networks"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]

edgeos