Bugtraq mailing list archives

Re: sniffers

From: matt () uts EDU AU (Jas)
Date: Mon, 1 May 1995 11:04:30 +1000 (EST)


Asriel DeCatte wrote this...

Look for /dev/nit (Sun's network interface tap, a device that allows
the system direct raw access to a network) if you have a Sun. I
don't know what the correspondents to the NIT are on other systems
(can anyone elucidate on this topic? I'm somewhat interested, since
my proficiencies in these matters really only reside with SunOS). If
it's there, and you believe the system it's on may have been
comprimised, be worried.


on Solaris boxen, the network interface is accessed through
/dev/le. the le driver is dlpi compliant, which will allow you to
access certain information from it. it also creates a STREAMS stream,
so you can push handy things like bufmod pfmod onto it..

                        Matt
-- 
#!/bin/sh
echo '16i[q]sa[ln0=aln100%Pln100/snlbx]sbA0D3F204445524F42snlbxq'|dc;exit
Matthew Keenan   Systems Programmer   Information Technology Division
      University of Technology     Sydney Australia

It's nice to be in a position where people apologize because they
assume there's humor in your work, based on past experience,
but they're not sure where it is. -- Rob Pike

Current thread:

Re: nfs_mount in AIX, (continued)
- - - Re: nfs_mount in AIX John F. Haugh II (Apr 26)
    - Re: nfs_mount in AIX Julian Assange (Apr 26)
    - CGI script insecurity in NCSA httpd Paul Phillips (Apr 26)
    - Re: CGI script insecurity in NCSA httpd Jeremy Fitzhardinge (Apr 27)
    - sniffers froden () yf-kraft no (Apr 28)
    - Re: your mail Timothy Newsham (Apr 30)
    - sniffers Theodore Alexopoulos (Apr 29)
    - Re: sniffers Jonathan M. Bresler (Apr 29)
    - Re: sniffers Asriel DeCatte (Apr 30)
    - Re: sniffers Asriel DeCatte (Apr 30)
    - Re: sniffers Jas (Apr 30)
    - Re: sniffers Asriel DeCatte (Apr 30)
    - Re: sniffers Jonathan M. Bresler (Apr 30)
    - Re[2]: sniffers Nayfield, Rod (Apr 30)
- SUMMARY: AntiFlash talkd Richard Allen (Apr 24)
  - Re: SUMMARY: AntiFlash talkd Aleph One (Apr 24)
  - Re: SUMMARY: AntiFlash talkd Gary Anderson (Apr 24)
  - The Dan Farmer rap - authors note Julian Assange (Apr 24)
  - Re: SUMMARY: AntiFlash talkd Marek Michalkiewicz (Apr 25)
- Good Times Nayfield, Rod (Apr 24)
- Re: Kerberos availability (Re: NIS) Roger Bolton (Apr 21)