Home page logo

pen-test logo Penetration Testing mailing list archives

Spoofed IP address
From: xun dong <xundong () cs york ac uk>
Date: Fri, 22 Sep 2006 16:54:07 +0100

Thanks everyone who read and answer my question.

Given a scenario as below:

When someone wants to launch a man-in-the-middle attack on the communication between the client and server. In order to make it more transparent(hard to discover) can the attacker pretended to has the same IP address as the server(when handling the communication with client end) while pretending to has the same IP address as the client(when handling the communication with server end). If it is possible, can you tell me your solutions.

This is not used to generate real attacks, it is just a concern I come cross when designing a communication system.

Thanks a lot.

Xun Dong

This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]