Penetration Testing mailing list archives
Re: [PEN-TEST] Spoofing switched networks
From: Simon Waters <Simon () wretched demon co uk>
Date: Wed, 7 Feb 2001 01:42:21 +0000
Sam Quigley wrote:
Because they can, sometimes, be made to fail open. Then, everything is on one big LAN, and standard switch sniffing methods can reveal all the network traffic.
This was a hot topic at one site I went to. Especially when looking at the top end Netscreen Firewalls (and similar) where multiple virtual firewalls sit on the same gigabit ethernet segments using VLAN's to divide the traffic out at lower end switches nearer the hosted servers. Some of the switch vendors are claiming that their VLAN implementations are pretty tight. Certainly the managability benefits that this kind of firewalling solution brings to hosting sites means we will see more VLAN's used in fairly sensitive areas. I'd be interested in knowing if anyone has breeched any VLANs, and if so who's.
Current thread:
- [PEN-TEST] Spoofing switched networks Salyars, Marty (Feb 04)
- Re: [PEN-TEST] Spoofing switched networks Robert van der Meulen (Feb 04)
- Re: [PEN-TEST] Spoofing switched networks Brian Hartsfield (Feb 05)
- Re: [PEN-TEST] Spoofing switched networks Dave Ryan (Feb 05)
- <Possible follow-ups>
- Re: [PEN-TEST] Spoofing switched networks Chris St. Clair (Feb 04)
- Re: [PEN-TEST] Spoofing switched networks Lindqvist, Johan (Feb 06)
- Re: [PEN-TEST] Spoofing switched networks Sam Quigley (Feb 06)
- Re: [PEN-TEST] Spoofing switched networks Simon Waters (Feb 06)
- Re: [PEN-TEST] Spoofing switched networks Nathan Catlow (Feb 07)
- Re: [PEN-TEST] Spoofing switched networks shawn . moyer (Feb 06)
- Re: [PEN-TEST] Spoofing switched networks Sam Quigley (Feb 06)
- Re: [PEN-TEST] Spoofing switched networks Robert van der Meulen (Feb 04)
- Re: [PEN-TEST] Spoofing switched networks Eduardo_Campos (Feb 06)
- Re: [PEN-TEST] Spoofing switched networks Shoten (Feb 06)
- Re: [PEN-TEST] Spoofing switched networks Jason Brvenik (Feb 06)
- Re: [PEN-TEST] Spoofing switched networks Ryan Russell (Feb 06)