Re: password sniffingj

[Pär Thoren <par.thoren () consultant saab se>]

Try this software.. 

http://ettercap.sourceforge.net/

I use it for this purpose

Tracy R Reed wrote:
> Are there snort rules which will detect passwords being sent in cleartext?
> I am interested in catching any passwords being sent in the clear in a
> number of protocols (http, pop, imap, etc). It is against corporate policy
> to send passswords in the clear but we have no way of knowing whether a
> developer has done something silly like set up non-ssl http authentication
> on some web server somewhere. I suppose I could run linsniff but it would
> be nice to have something integrated with snort that supported more
> protocols.
>
> --
> Tracy Reed      http://www.ultraviolet.org
> "Every artist is a cannibal, every poet is a thief.
>  They all kill their inspiration, and sing about the grief." - U2
>
>   ------------------------------------------------------------------------
>    Part 1.2Type: application/pgp-signature

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
http://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users