RE: What's the deal with SSH? (was: PIX software release 5.2)

[John Adams <jna () retina net>]

On Mon, 25 Sep 2000 sean.kelly () lanston com wrote:

> As other people have noted, don't mistake switching for some sort of network
> security panacea.  And you should certainly be concerned if you're using
> telnet to connect to locations you'd prefer be kept off-limits.  All it
> takes to grab a username/password is have a box in a position to pick up
> traffic with its ethernet card set in promiscuous mode.

Although I'm not putting 100% faith in the security of switched networks,
if my switch has not been compromised, and no SPAN ports are available,
how is it possible to pull packets off the network? I can think of some
ways to do it by forging ISL or trunk protocols, but nothing that can be
easily accomplished by an attacker from the outside in. 

This is more of a "how can it be compromised" question than a "I'm going
to do this tomorrow" configuration issue. 

-j


--
J. Adams                                        http://www.retina.net/~jna
You are supposed to be a consumer, a black hole for goods, advertising and
content. They only want to allocate enough upstream bandwidth for
10,000,000 buy buttons. Producing or sharing information is a subversive
act and will not be tolerated. -anonymous coward on /.



_______________________________________________
Firewall-wizards mailing list
Firewall-wizards () nfr net
http://www.nfr.net/mailman/listinfo/firewall-wizards