Penetration Testing mailing list archives
Re: HP BL30's and VLAN's
From: jkowall <jkowall () shocking net>
Date: Fri, 04 Mar 2005 12:10:36 -0500
You can arp spoof any switch that is misconfigured. You can gain a span port on seperated switches as well, its just 2 spans versus one.
Having proper IDS and monitoring is the only way to detect and prevent this stuff.
Michael Sierchio wrote:
jkowall wrote:VLANs are just as secure as different switches.I beg to differ. It is possible to gain a spanning port on a VLAN switch, either through the normal mechanism or by overloading the MAC db. Even under normal operation, you won't be getting the same degree of traffic separation. Regards, Michael Sierchio
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature
Current thread:
- HP BL30's and VLAN's Merrick, Carl (Mar 03)
- Re: HP BL30's and VLAN's jkowall (Mar 03)
- Message not available
- Re: HP BL30's and VLAN's jkowall (Mar 04)
- Message not available
- Re: HP BL30's and VLAN's jkowall (Mar 03)
- Re: HP BL30's and VLAN's Ricardo Oliveira (Mar 03)
- RE: HP BL30's and VLAN's Jerry Shenk (Mar 03)
- Re: HP BL30's and VLAN's Brendan Dolan-Gavitt (Mar 03)
- Re: HP BL30's and VLAN's Ulric Eriksson (Mar 04)
- <Possible follow-ups>
- RE: HP BL30's and VLAN's MILES John M (Mar 03)