Bugtraq mailing list archives

Re: Incorrect Linux ARP behavior

From: bobk () SINISTER COM (bobk)
Date: Sat, 19 Sep 1998 12:27:47 -0400


You don't even need a program to demonstrate this behavior:

$ arp -s suspecthost 00:de:ad:c0:ff:ee
$ ping suspecthost

If you get a response, then it is a linux box in promiscuous mode.

don't forget:

$ arp -d suspecthost

When you are done, clearing out the bogus MAC address.



Bob Keyes,
Security Consultant
Cambridge, Mass.

Current thread:

Re: Buffer overflows in Minicom 1.80.1 M.C.Mar (Aug 31)
- <Possible follow-ups>
- Re: Buffer overflows in Minicom 1.80.1 M.C.Mar (Sep 02)
  - Re: Buffer overflows in Minicom 1.80.1 Patrick J. Volkerding (Sep 02)
    - Re: Buffer overflows in Minicom 1.80.1 Patrick J. Volkerding (Sep 02)