Re: A more secure form of .htaccess?

To: debian-security@lists.debian.org
Subject: Re: A more secure form of .htaccess?
From: Schusselig Brane <willwesleyccna@yahoo.de>
Date: Sat, 27 Apr 2002 01:49:18 -0600
Message-id: <[🔎] 3CCA57FE.485533F2@yahoo.de>
References: <[🔎] Pine.LNX.4.44.0204260119230.26424-100000@triton.neptune.on.ca>

Steve Mickeler wrote:
> 
> Trust not in switches.
> 
> They too can be easily manipulated unless you have locked them down at a
> mac address and port level.
> 
> 'apt-get install dsniff' ; 'man arpspoof'

Of course, which is one of the things I had in mind when I said:

> > topology. Switches tend not to allow other nodes on a network to see
                       ^^^^
and:

> > sniffed off the network. That is, of course, if the network was designed
> > with that in mind.


Dan Faerch wrote:
> The subject on switches.. It is a general misunderstanding that switches
> provide security.. There are several easy tricks to make a switch spill its
> guts.. They were designed for performance and no one ever promised security
> :)

Cisco, in fact does promise security when using thier switches. Well,
most of thier switches. But I do agree that they are designed with
security as an other-than-primary goal. However, they can provide a
layer of abstraction, to help prevent sniffing.

wheee.
-Will Wesley, CCNA
"Cheer up! Things are getting worse at a slower rate."


-- 
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

References:
- Re: A more secure form of .htaccess?
  - From: Steve Mickeler <steve@neptune.ca>

Prev by Date: Re: A more secure form of .htaccess?
Next by Date: Re: connection refuse by tcp_wrapper - error message
Previous by thread: Re: A more secure form of .htaccess?
Next by thread: Re: A more secure form of .htaccess?
Index(es):
- Date
- Thread