Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Cable vs DSL

From: "Chris McNab" <chris.mcnab () trustmatta com>
Date: Tue, 22 Apr 2003 18:30:08 +0100
Hi,


I'm not sure this is the case in all telco's setups - For example, I
am on a cable modem at home, and I can't see *any* traffic but my
own... (Which is how I want it anyways)

jamie

Neal K. Groothuis wrote:

 > DSL.  With cable, you're on a broadcast medium, and therefore
everyone
 > on your segment can see your traffic and vice-versa.
 >
 >                               - neal



Matta proved the problem in cable setups here in the UK with the following
white paper:

http://www.trustmatta.com/downloads/Matta_Broadband_Insecurity.pdf

A Win32 / WinPcap tool called ARPsniffer.exe can be used to good effect in
this case. Because the cable medium is effectively switched, you must
perform ARP cache poisoning to re-direct and sniff traffic.

Regards,

Chris



Chris McNab
Technical Director

Matta Security Limited
18 Noel Street
London W1F 8GN

Tel: 0870 077 1100
Mob: 0788 626 0878

This e-mail was sent from Matta Security Limited. The information contained
in this message is confidential, may be privileged, and is intended for the
addressee(s) only. If you have received this message in error please notify
the originator immediately. The unauthorised use, disclosure, copying or
alteration of this message is strictly forbidden. Matta Security Limited
does not warrant that any attachments are free from viruses or other
defects. Matta Security Limited will not be liable for direct, special,
indirect or consequential damages arising from alteration of the contents of
this message by a third party or as a result of any virus being passed on.



---------------------------------------------------------------------------
Attend Black Hat Briefings & Training Europe, May 12-15 in Amsterdam, the 
world's premier event for IT and network security experts.  The two-day 
Training features 6 hand-on courses on May 12-13 taught by professionals.  
The two-day Briefings on May 14-15 features 24 top speakers with no vendor 
sales pitches.  Deadline for the best rates is April 25.  Register today to 
ensure your place.  http://www.securityfocus.com/BlackHat-security-basics 
----------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: