Penetration Testing mailing list archives

Re: Leased Lines

From: David Howe <DaveHowe.Pentest () googlemail com>
Date: Thu, 15 Oct 2009 12:36:06 +0100

Sebastiaan wrote:

Hi,

I'm looking for any information related to the security of leased
lines, specifically if it is feasible to eavesdrop on them outside a
companies building. What would it take to do it?


plenty of wiretap kits available. note however that in most
jurisdictions, using one is a criminal offense (even with the permission
of the line owner - the line belongs to the service provider, not the
customer) and usually will carry a custodial sentence if you are caught
doing it.

it is unusual (but possible) that the channel is encrypted. normally in
a leased line environment, there isn't even ppp - its a dedicated
point-to-point link, you don't need to log in.

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified. 

http://www.iacertification.org
------------------------------------------------------------------------

Current thread:

Leased Lines Sebastiaan (Oct 13)
- RE: Leased Lines Shenk, Jerry A (Oct 13)
- RE: Leased Lines Craig Wilson (Oct 15)
- Re: Leased Lines David Howe (Oct 15)
- Re: Leased Lines Wim Remes (Oct 15)
- <Possible follow-ups>
- RE: Leased Lines Gorgon Beast (Oct 15)
  - Re: Leased Lines Elizabeth Greene (Oct 19)