Bugtraq mailing list archives
Re: sniffers
From: jmb () kryten Atinc COM (Jonathan M. Bresler)
Date: Sun, 30 Apr 1995 12:41:48 -0400 (EDT)
On Sun, 30 Apr 1995, Asriel DeCatte wrote:
First of all, pick up lsof and cpm... ftp://ftp.cert.org/pub/tools/lsof/lsof_3.02.tar.gz and ftp://ftp.cert.org/pub/tools/cpm/cpm.1.0.tar, respectively.
good tools. everything that asriel has written is fine. by all
means check out each machine thta you have on your net in detail.
(tripwire helps do this in an automanted fashion, as available from cert,
coast and crew).
sniffer logs files cna grow very quickly, watch you disk usage.
but you just about cant find a sniffer on your net. a laptop
makes a great sniffer. ethernet in the ceiling? good. laptop goes in
the ceiling space above the tiles and is retrieved a few days later. the
men's/women's room ceilings might be particulary good places. you can
often get a couple minutes of privacy there. aint no one going to yell
if you leave a facility without a computer ;)
jmb
Jonathan M. Bresler jmb () kryten atinc com | Analysis & Technology, Inc.
| 2341 Jeff Davis Hwy
play go. | Arlington, VA 22202
ride bike. hack FreeBSD.--ah the good life | 703-418-2800 x346
Current thread:
- CGI script insecurity in NCSA httpd, (continued)
- CGI script insecurity in NCSA httpd Paul Phillips (Apr 26)
- Re: CGI script insecurity in NCSA httpd Jeremy Fitzhardinge (Apr 27)
- sniffers froden () yf-kraft no (Apr 28)
- Re: your mail Timothy Newsham (Apr 30)
- sniffers Theodore Alexopoulos (Apr 29)
- Re: sniffers Jonathan M. Bresler (Apr 29)
- Re: sniffers Asriel DeCatte (Apr 30)
- Re: sniffers Asriel DeCatte (Apr 30)
- Re: sniffers Jas (Apr 30)
- Re: sniffers Asriel DeCatte (Apr 30)
- Re: sniffers Jonathan M. Bresler (Apr 30)
- Re[2]: sniffers Nayfield, Rod (Apr 30)
- Re: SUMMARY: AntiFlash talkd Aleph One (Apr 24)
- Re: SUMMARY: AntiFlash talkd Gary Anderson (Apr 24)
- The Dan Farmer rap - authors note Julian Assange (Apr 24)
- Re: SUMMARY: AntiFlash talkd Marek Michalkiewicz (Apr 25)