Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [PEN-TEST] Datacenter Wiring

From: Andre Delafontaine <andre.delafontaine () ECHOSTAR COM>
Date: Fri, 20 Oct 2000 11:30:31 -0600
JLJ wrote:


The attached snooping device doesn't need to talk, only listen.  If it can
be quiet, it need not reveal its MAC address, and hence not reveal its
presence on the line.  I have read that old style AUI cards have a separate
"transmit" pair that can be clipped...I am sure that a suitable device could
be constructed, including wireless LAN equipment with me on the receiving
end a few buildings away.



I had a talk with Marcus Ranum a while back on this exact topic with
NICs using TP.

My proposed method was to cut one of the sending wires, although this
only works with NICs that don't require a link on the send side,
although one could hook up the send wires to a different, unused hub
just to create a link signal.

His method was to insert a diode (the right way, whichever way that is)
in one of the send wires so that the NIC still sees link but isn't able
to send anything.

I'm trying to find some time to try this out and I'm more than
interested in getting feedback on other people's experiences, in
particular what happens on 100BT cards.


Andre
--
             andre.delafontaine at echostar.com

  F20 DSS: BD75 66D9 5B2C 66CE 9158  BB27 B199 59CE D117 4E9F
   F16 RSA: F8 04 FE 50 02 B5 03 02  F6 87 C7 8D F9 2E B8 58
Previous By Date Next
Previous By Thread Next

Current thread: