Security Basics mailing list archives
RE: Sniffing in switched network
From: "Lim Meng Koon" <ccelimmk () nus edu sg>
Date: Sun, 2 Feb 2003 11:53:12 +0800
Not too sure if there are any ways at all, especially if we are talking about a mixed platform network. If you have a single platform network, perhaps some proprietry solution might be available from that platform vendor. Cisco, has a arp watch feature on the new Cat6509 CatOS 7.5, which I have not tried out. regards meng koon -----Original Message----- From: ktyler () nautilus-ins com [mailto:ktyler () nautilus-ins com] Sent: Sat 2/1/2003 5:55 AM To: Lim Meng Koon Cc: nork () gazeta pl; security-basics () securityfocus com Subject: RE: Sniffing in switched network What are ways to prevent sniffing on a switch? "Lim Meng Koon" <ccelimmk () nus edu To: <nork () gazeta pl>, .sg> <security-basics () securityfocus com> cc: 01/30/2003 06:24 Subject: RE: Sniffing in switched network PM have you checked out dsniff? -----Original Message----- From: nork () gazeta pl [mailto:nork () gazeta pl] Sent: Thursday, January 30, 2003 8:52 PM To: security-basics () securityfocus com Subject: Sniffing in switched network Hello, I've read through some documentation about sniffing the switched network. There are some arp-cache methods to discover a sniffing host (switched or "normal" network is not important here I think), if it is the switched network will I get the result I want, or first I have to become a sniffer also (i.e. arp-poison the switch cache) - to get the responses that will tell me who is the sniffer? Most documentation I read is somewhat old (2 years), is everything aleady well known and described in this subject or are there any running projects? Thanks for help, Norbert
Current thread:
- Re: RE: Sniffing in switched network BYRON COPELAND (Jan 31)
- <Possible follow-ups>
- Re: Sniffing in switched network hallx (Jan 31)
- RE: Sniffing in switched network Lim Meng Koon (Feb 05)