Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Detect Network Sniffing

From: Kurt Buff <kurt.buff () gmail com>
Date: Tue, 8 Nov 2011 10:25:08 -0800
On Mon, Nov 7, 2011 at 16:11, Dagni McPhee <dagnimcphee () gmail com> wrote:

Is there any way to detect if a sniffer is being used to analyze my traffic
before it gets onto the Internet? Also is it required for a sniffer to have
an IP address or can it sniff while remaining "uncontactable" on the
network?


What's your environment look like? Are you worried about wired or
wireless, or both? Are your switches protected against ARP cache
flooding attacks? Have you physically secured your switches so that
they can't be used to span/mirror traffic by unauthorized personnel?
Are you using 802.1x to secure your wireless traffic?

Take a look at [at least] the links of the first page of this query:
https://www.google.com/search?q=detect%20promiscuous%20mode%20sniffing


Kurt

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: