Penetration Testing mailing list archives
Re: Cain & Able man in the middle attack
From: Kyle Evans <evans.584 () osu edu>
Date: Fri, 14 Dec 2007 11:42:13 -0500
There are specific models and IOS versions that support it. Here is a link to a pdf with a feature comparison on page 10:
http://www.cisco.com/application/pdf/en/us/guest/products/ps708/c2072/cdccont_0900aecd805f0955.pdfThe feature comparison doesn't show IOS versions, but I do know that older IOS versions for the 3550 do not support the features.
To answer your other question, you can use DAI and IP source guard if your network doesn't use dhcp, but it is a lot more work. Basically, both DAI and IPSG rely on dhcp snooping. So you must be using dhcp snooping to use DAI and IPSG, and if you don't have dhcp on your network, then you must create a static entry in the dhcp snooping binding table for every host.
Kyle dubaisans dubai wrote:
Is there any specific Cisco IOS version or Cisco Switch hardware models versions which support Dynamic ARP inspection or do all of them support.? Does DAI work only if the network is using DHCP or will it work in static-IP-addressing is used also? On Dec 14, 2007 3:32 AM, Kyle Evans <evans.584 () osu edu> wrote:If you use cisco switches, you can use dhcp snooping, dynamic arp inspection, and ip source guard. Kyle James Bensley wrote:I too have performed MITM attacks on my network with Cain & Able. Also having grabbed a few HTTP and FTP passwords seeing that it was successful I now need to secure my self against these attacks but how can I do this? Would static MAC mappings in my hosts files do the trick? Thanks for your time Bensley. ------------------------------------------------------------------------ This list is sponsored by: Cenzic Need to secure your web apps NOW? Cenzic finds more, "real" vulnerabilities fast. Click to try it, buy it or download a solution FREE today! http://www.cenzic.com/downloads ------------------------------------------------------------------------------------------------------------------------------------------------ This list is sponsored by: Cenzic Need to secure your web apps NOW? Cenzic finds more, "real" vulnerabilities fast. Click to try it, buy it or download a solution FREE today! http://www.cenzic.com/downloads ------------------------------------------------------------------------
------------------------------------------------------------------------ This list is sponsored by: Cenzic Need to secure your web apps NOW? Cenzic finds more, "real" vulnerabilities fast. Click to try it, buy it or download a solution FREE today! http://www.cenzic.com/downloads ------------------------------------------------------------------------
Current thread:
- Cain & Able man in the middle attack Abdullah . Yousief (Dec 10)
- Message not available
- Cain & Able man in the middle attack James Bensley (Dec 12)
- Re: Cain & Able man in the middle attack Juan B (Dec 13)
- Re: Cain & Able man in the middle attack Carlos Moro GarcĂa (Dec 13)
- Re: Cain & Able man in the middle attack Steven Adair (Dec 13)
- RE: Cain & Able man in the middle attack Paul Melson (Dec 13)
- Re: Cain & Able man in the middle attack Dotzero (Dec 13)
- Re: Cain & Able man in the middle attack Kyle Evans (Dec 13)
- Re: Cain & Able man in the middle attack dubaisans dubai (Dec 14)
- Re: Cain & Able man in the middle attack Kyle Evans (Dec 14)
- Cain & Able man in the middle attack James Bensley (Dec 12)
- Re: Cain & Able man in the middle attack Chris Brenton (Dec 14)
- Message not available