Educause Security Discussion mailing list archives

Re: Firesheep/Cain& Able

From: Michael Horne <Michael.Horne () OLIN EDU>
Date: Mon, 1 Nov 2010 10:55:48 -0400

And the counter! I see wireless bandwidth going through the floor on open wireless.

http://blogs.forbes.com/andygreenberg/2010/10/28/how-to-screw-with-firesheep-snoops-try-fireshepherd/

http://notendur.hi.is/~gas15/FireShepherd/


From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Hudson, 
Edward
Sent: Monday, November 01, 2010 10:41 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Firesheep/Cain& Able

In light of the recent attention to "Firesheep" I am wondering if anyone is having issues and how they are addressing?
When used in conjunction with "Cain&Able" it appears able to sniff both wired and wireless traffic for login 
credentials and execute ARP Poisoning.
TIA
EH

Ed Hudson, CISM
Information Security Office
California State University, Chico
www.csuchico.edu/ires/security<http://www.csuchico.edu/ires/security>
Office: (530) 898-6307
Cell: 707-799-3250
ewhudson () csuchico edu<mailto:ewhudson () csuchico edu>

Current thread:

Firesheep/Cain& Able Hudson, Edward (Nov 01)
- Re: Firesheep/Cain& Able SCHALIP, MICHAEL (Nov 01)
- Re: Firesheep/Cain& Able Michael Horne (Nov 01)
- Re: Firesheep/Cain& Able Isac Balder (Nov 01)
  - Re: Firesheep/Cain& Able Valdis Kletnieks (Nov 01)
    - Re: Firesheep/Cain& Able David Gillett (Nov 03)
  - Re: Firesheep/Cain& Able Foerst, Daniel P. (Nov 02)
    - Re: Firesheep/Cain& Able Webb, Justin (Nov 02)
    - Re: Firesheep/Cain& Able Greg Williams (Nov 02)
    - Re: Firesheep/Cain& Able Alex Keller (Nov 02)
- <Possible follow-ups>
- Re: Firesheep/Cain& Able John Ladwig (Nov 01)
- Re: Firesheep/Cain& Able John Ladwig (Nov 02)
- Re: Firesheep/Cain& Able Matt Giannetto (Nov 03)