Snort mailing list archives
Stealth Interface - Additional Information
From: "Chris Arsenault" <carsenault () firstedcu org>
Date: Mon, 7 Jan 2002 12:19:00 -0600
In addition to removing all bindings on the NIC card on our sensor running Windows 2000, I also disabled automatic private IP addressing via reg hack which now put the sensor interface at an IP address of 0.0.0.0 with no subnet mask or gateway. This is basically a stealth interface equivalent to what can be done with linux/unix. Can anyone provide information related to the possibility of compromising this interface? Due to issues with the Ethernet tap we had, I had to eliminate it so both the send and receive Ethernet pairs are active on the sensor interface. Thanks for your help... Chris Arsenault
Current thread:
- Stealth Interface - Additional Information Chris Arsenault (Jan 07)