Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



WebApp Sec: Re: keyloggers? - dont doit

Re: keyloggers? - dont doit

From: Kyle Maxwell <krmaxwell_at_gmail.com>
Date: Wed, 6 Apr 2005 13:39:38 -0500

On Apr 6, 2005 7:23 AM, Alvin Oga
<alvin.sec_at_virtual.linux-consulting.com> wrote:
> - anything sent over the internet is sniffable from
> anywhere in the world

Delurking just to mention that this isn't correct. Online banking (and
other security-sensitive activities) aren't a good idea from shared
sites like a cybercafe for all the reasons others have mentioned, but
this isn't it. From my desktop here, I almost certainly have no way of
sniffing your traffic to your bank, unless I happen to be somewhere
along your path.

I'd also like to know about SSL being broken. I think you mean one of
the common ciphers is broken, which would be substantial news indeed.

Your conclusion is right but your reasoning is completely wrong AFAICT. 

-- 
Kyle Maxwell
[krmaxwell_at_gmail.com]
Received on Apr 06 2005
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]