[1650] in bugtraq
Re: sniffers
daemon@ATHENA.MIT.EDU (Colin Jenkins)
Mon May 1 11:44:56 1995
From: jenkins@dpw.com (Colin Jenkins)
To: asriel@chewy.wookie.net (Asriel DeCatte)
Date: Mon, 1 May 95 9:13:23 EDT
Cc: root@ee.duth.gr, bugtraq@fc.net
In-Reply-To: <199504300832.EAA31680@chewy.wookie.net>; from "Asriel DeCatte" at Apr 30, 95 4:32 am
> > Is there any way to find out if a sniffer is on the net?
>
> Sure.
>
> If you have access to the machine you suspect is being sniffed from.
These are all good ideas, however many sniffers are not Unix systems that
can be logged into and examined. I have worked with DOS based sniffers
(Network General Sniffer, Excelan, HP, etc) that are far superior to suns
(as sniffers/protocol analayzers) and I doubt that they are easily detectable
even with their transmit lead intact.
Colin
Colin Jenkins
Supervisor of Systems and Networking
Davis Polk & Wardwell
jenkins@dpw.com
(212) 450-5729
