Re: Can an ethernet bridge be detected ?

[ijk1137 <ijk1137 () gmail com>]

Hmm, I see something going from the 'bridge pc' to the 'workstation pc':

Every 2 minutes there is an IGMP packet (V2 Membership Query, general) 
arriving:
src ip: 0.0.0.0
dst ip: 224.0.0.1
src mac: eth0 of the 'bridge pc'
dst mac: 01:00:5e:00:00:01 (unknown to me)

Perhaps this can be blocked on the 'bridge pc' with iptables or something..

Anyway, when I'm trying a traceroute from 'workstation pc' to some host 
on the internet, the 'bridge pc' is not listed in the output, so it's 
good...

But still.. don't you have an idea how the 'bridge pc' could be 
detected? Actively or passively..

I'm trying to setup an undetectable surveillance bridge between my 
workstation and the router, in a way that it is totally invisible to 
both sides..

Any ideas would be much appreciated,
Thanks



------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------