Vulnerability Development mailing list archives

Re: ethernet cards & promisc mode

From: scut () NB IN-BERLIN DE (Sebastian)
Date: Thu, 4 May 2000 22:01:53 +0200


On Thu, May 04, 2000 at 10:30:30AM -0400, Spears, Joseph L. wrote:

If it is such a big deal, buy a switch instead of a fancy card... then all
you get is broadcast traffic...


There are numerous methods to get ANY switch to forward data from other
segments into yours. I've yet not seen any networks that had strict static
ARP tables anywhere and a secure switch. Don't trust your switch, just take
a look at the various ARP relay tools (hunt, arptool, arpraw) or sniffers
that support ARP spoofing (dsniff + tools).

ciao,
scut / teso

--
- scut () nb in-berlin de - http://nb.in-berlin.de/scut/ --- you don't need a --
-- lot of people to be great, you need a few great to be the best ------------
http://3261000594/scut/pgp - 5453 AC95 1E02 FDA7 50D2 A42D 427E 6DEF 745A 8E07
-- data in VK/USA Mayfly experienced, awaiting transfer location, hi echelon -

Current thread:

Re: ethernet cards & promisc mode, (continued)
- Re: ethernet cards & promisc mode Holger van Koll (May 04)
- Re: ethernet cards & promisc mode R. Argentini (May 04)
- Networking theories Jesus Oquendo (May 04)
  - Re: Networking theories Bluefish (May 05)
  - MTA scanner Blue Boar (May 05)
    - Re: MTA scanner Bluefish (May 07)
  - Brooktrout fax boards Andrew Sherrod (May 05)
- NAV detected a virus in a document you sent. pb001/Lzub/LT () LZUB LT (May 04)
  - Re: NAV detected a virus in a document you sent. 3APA3A (May 05)
- Re: ethernet cards & promisc mode Spears, Joseph L. (May 04)
  - Re: ethernet cards & promisc mode Sebastian (May 04)
- Re: ethernet cards & promisc mode Michael Wojcik (May 05)
  - Re: ethernet cards & promisc mode Bluefish (May 07)