Re: A more secure form of .htaccess?
Steve Mickeler wrote:
>
> Trust not in switches.
>
> They too can be easily manipulated unless you have locked them down at a
> mac address and port level.
>
> 'apt-get install dsniff' ; 'man arpspoof'
Of course, which is one of the things I had in mind when I said:
> > topology. Switches tend not to allow other nodes on a network to see
^^^^
and:
> > sniffed off the network. That is, of course, if the network was designed
> > with that in mind.
Dan Faerch wrote:
> The subject on switches.. It is a general misunderstanding that switches
> provide security.. There are several easy tricks to make a switch spill its
> guts.. They were designed for performance and no one ever promised security
> :)
Cisco, in fact does promise security when using thier switches. Well,
most of thier switches. But I do agree that they are designed with
security as an other-than-primary goal. However, they can provide a
layer of abstraction, to help prevent sniffing.
wheee.
-Will Wesley, CCNA
"Cheer up! Things are getting worse at a slower rate."
--
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Reply to: