Is it basically true that there is zero defence on a switched LAN from the
likes of Ettercap and other packet sniffers and ARP Poisoners ?

And that even SSL and SSH are in effect wide open in this environment ?

So if you are at work on their network and login to an encrypted email
service you are still screwed because someone running a packet sniffer can
intercept and decrypt the data ?

[ Post a follow-up to this message ]

In article <IKEY0RQA38449.1967013889@anonymous.poster>, Use-Author-
Supplied-Address@[127.1] says...
> Is it basically true that there is zero defence on a switched LAN from the
> likes of Ettercap and other packet sniffers and ARP Poisoners ?

A switched LAN is harder to sniff than non-switched.  You'd either need
access to the switch to set up monitoring for other ports or you have to
create a man in the middle type scenario through poisoning and then
having your machine act as a router.  While this may allow the data to
be captured, SSL is end to end, so all that would be captured is
encrypted data.

>
> And that even SSL and SSH are in effect wide open in this environment ?
>
> So if you are at work on their network and login to an encrypted email
> service you are still screwed because someone running a packet sniffer can
> intercept and decrypt the data ?

No.  While the possibility of a man-in-the-middle attack exists, it
should flag with a bad cert if you are checking certificate validity.

/steve
--
Check out Cotse's Privacy Watch.
A comprehensive information resource.
http://www.cotse.net/privacy/

[ Post a follow-up to this message ]

Back to security. Cotse gives a never ending supply of good
information. Well worth the monthly fee.

[ Post a follow-up to this message ]

In article <1114540564.070836.227540@o13g2000cwo.googlegroups.com>
"Anonymous" <yardleymj@yahoo.ca> wrote:
>
> Back to security.


Yawn.

[ Post a follow-up to this message ]