From owner-freebsd-questions Mon May 28 1:49:44 2001 Delivered-To: freebsd-questions@freebsd.org Received: from mail11.svr.pol.co.uk (mail11.svr.pol.co.uk [195.92.193.23]) by hub.freebsd.org (Postfix) with ESMTP id 2CD2337B423 for ; Mon, 28 May 2001 01:49:35 -0700 (PDT) (envelope-from hmv@meredithm.fsnet.co.uk) Received: from modem-66.angband.dialup.pol.co.uk ([62.136.111.66] helo=predator.hmv.net) by mail11.svr.pol.co.uk with esmtp (Exim 3.13 #0) id 154IiT-0007D7-00 for questions@freebsd.org; Mon, 28 May 2001 09:49:34 +0100 Received: from [127.0.0.1] (helo=warlock.hmv.net) by predator.hmv.net with smtp (Exim 3.16 #1) id 154Ial-0002ly-00 for questions@FreeBSD.ORG; Mon, 28 May 2001 09:41:35 +0100 Content-Type: text/plain; charset="iso-8859-1" From: Mike Meredith To: questions@FreeBSD.ORG Subject: Re: security question Date: Mon, 28 May 2001 09:41:35 +0100 X-Mailer: KMail [version 1.2] References: In-Reply-To: MIME-Version: 1.0 Message-Id: <0105280941350A.00298@warlock.hmv.net> Content-Transfer-Encoding: 8bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG > Basically, I set up three temporary machines (or set up a temp login > on one machine) We assume that I've cracked machine "A" and you then > log in to machine "B" via telnet from machine "C". I then show you > that I've sniffed your password and can now log into machine "B". To > increase the shock value, I can have you su to root via telnet, which > then gives me root access to machine "B". > (p.s. don't try this particular demo if you're running a switch > because it won't work.) I might be repeating the obvious here, but a switched environment doesn't protect totally against sniffing. It just makes it slightly more difficult. Look for a utility called 'dsniff', and there are other tools to do the same job. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message