| Author |
Security on a switched LAN (No defense)
|
|
| Anonymous 2005-04-07, 7:45 am |
| Is it basically true that there is zero defence on a switched LAN from the
likes of Ettercap and other packet sniffers and ARP Poisoners ?
And that even SSL and SSH are in effect wide open in this environment ?
So if you are at work on their network and login to an encrypted email
service you are still screwed because someone running a packet sniffer can
intercept and decrypt the data ?
| |
| Stephen K. Gielda 2005-04-07, 5:58 pm |
| In article <IKEY0RQA38449.1967013889@anonymous.poster>, Use-Author-
Supplied-Address@[127.1] says...
> Is it basically true that there is zero defence on a switched LAN from the
> likes of Ettercap and other packet sniffers and ARP Poisoners ?
A switched LAN is harder to sniff than non-switched. You'd either need
access to the switch to set up monitoring for other ports or you have to
create a man in the middle type scenario through poisoning and then
having your machine act as a router. While this may allow the data to
be captured, SSL is end to end, so all that would be captured is
encrypted data.
>
> And that even SSL and SSH are in effect wide open in this environment ?
>
> So if you are at work on their network and login to an encrypted email
> service you are still screwed because someone running a packet sniffer can
> intercept and decrypt the data ?
No. While the possibility of a man-in-the-middle attack exists, it
should flag with a bad cert if you are checking certificate validity.
/steve
--
Check out Cotse's Privacy Watch.
A comprehensive information resource.
http://www.cotse.net/privacy/
| |
| Anonymous 2005-04-26, 5:46 pm |
| Back to security. Cotse gives a never ending supply of good
information. Well worth the monthly fee.
| |
| Expert 2005-04-26, 5:46 pm |
| In article <1114540564.070836.227540@o13g2000cwo.googlegroups.com>
"Anonymous" <yardleymj@yahoo.ca> wrote:
>
> Back to security.
Yawn.
|
|
|
|