[1763] in bugtraq
Re: detecting sniffers is downright easy
daemon@ATHENA.MIT.EDU (Dr. Frederick B. Cohen)
Wed May 10 12:17:56 1995
From: fc@all.net (Dr. Frederick B. Cohen)
To: don@paranoia.com
Date: Wed, 10 May 1995 10:09:55 -0400 (EDT)
Cc: bugtraq@fc.net
In-Reply-To: <m0s9CPM-0006RMC@primus.paranoia.com> from "don@paranoia.com" at May 10, 95 09:06:36 am
...
> How does this help if the sniffer program is running on a machine
> attached to your ethernet which is not supposed to be there? i.e. if
> someone were to sneak in a little 386 box and stick it up above the
> ceiling tiles somewhere?
To quote from so many others from bugtraq who sent me email, this list
is not about physical security - it's about practical Unix security,
and in that context, your comment is irrelevant.
...
> Again, this won't get sniffers running on hosts which are not your own,
> or which you don't have access to. These are the most troublesome.
Again, this list is not about that topic - it's about Unix security
holes, and your comment is irrelevant to that.
> Please stop posting this thread to bugtraq. It has absolutely nothing to
> do with the charter.
In fact, my thread did have to do with the charter, but your response did not.
--
-----------------
\Management /\/| 216-686-0090 - PO Box 1480, Hudson, OH 44236
\ /\/ | Check out info-security heaven and test your system
\/\ /\/ | for known vulnerabilities (1st time for free) at URL:
\/Analytics| (scans deeper than SATAN or ISS) http://all.net:8080
-----------------
ASIS "Security Management" Articles and Information On-Line
Read "Protection and Security on the Information Superhighway"
John Wiley and Sons, 1995 ISBN 0-471-11389-1, 320 pp, $24.95
