Security Basics mailing list archives
RE: Sniffing in switched network
From: "Lim Meng Koon" <ccelimmk () nus edu sg>
Date: Sun, 2 Feb 2003 11:53:12 +0800
Not too sure if there are any ways at all, especially if we are talking about a mixed platform network.
If you have a single platform network, perhaps some proprietry solution might be available from that platform vendor.
Cisco, has a arp watch feature on the new Cat6509 CatOS 7.5, which I have not tried out.
regards
meng koon
-----Original Message-----
From: ktyler () nautilus-ins com [mailto:ktyler () nautilus-ins com]
Sent: Sat 2/1/2003 5:55 AM
To: Lim Meng Koon
Cc: nork () gazeta pl; security-basics () securityfocus com
Subject: RE: Sniffing in switched network
What are ways to prevent sniffing on a switch?
"Lim Meng Koon"
<ccelimmk () nus edu To: <nork () gazeta pl>,
.sg> <security-basics () securityfocus com>
cc:
01/30/2003 06:24 Subject: RE: Sniffing in switched network
PM
have you checked out dsniff?
-----Original Message-----
From: nork () gazeta pl [mailto:nork () gazeta pl]
Sent: Thursday, January 30, 2003 8:52 PM
To: security-basics () securityfocus com
Subject: Sniffing in switched network
Hello,
I've read through some documentation about sniffing the
switched network. There are some arp-cache methods to
discover a sniffing host (switched or "normal" network
is not important here I think), if it is the switched
network will I get the result I want, or first I have
to become a sniffer also (i.e. arp-poison the switch
cache) - to get the responses that will tell me who is
the sniffer?
Most documentation I read is somewhat old (2 years), is
everything aleady well known and described in this
subject or are there any running projects?
Thanks for help,
Norbert
Current thread:
- Re: RE: Sniffing in switched network BYRON COPELAND (Jan 31)
- <Possible follow-ups>
- Re: Sniffing in switched network hallx (Jan 31)
- RE: Sniffing in switched network Lim Meng Koon (Feb 05)