Re: promiscuous mode for Eth0

To: <debian-user@lists.debian.org>
Subject: Re: promiscuous mode for Eth0
From: "Marc-Adrian Napoli" <marcadrian@cia.com.au>
Date: Thu, 16 Dec 1999 12:31:29 +1100
Message-id: <[🔎] 009001bf4765$46f084e0$24db3fcb@cia.com.au>
References: <[🔎] XFMail.19991216005844.pollywog@shadypond.com>

hi there,

> > It means that that interface is receiving all packets on the network
> > segment. Useful for packet sniffers. It's a bad thing if a cracker has
> > initiated it.
> That is what I thought.  Is there a way to keep a cracker from doing this?

The only person who can put the ethernet device into promisc. mode is root,
if root is not comprised, people will not be able to switch the ethernet
card over to this mode.

Also remember that promisc. mode is only for ethernet cards. If you don't
let anyone put a machine onto the network that could be doing naughty
promisc. listening, then you should be fine. (ie. physically protect your
network).

Regards,

Marc-Adrian Napoli
Connect Infobahn Australia
+61 2 92811750

Reply to:

References:
- Re: promiscuous mode for Eth0
  - From: Pollywog <pollywog@shadypond.com>

Prev by Date: dictd is not restarted after upgrading from unstable?
Next by Date: Re: promiscuous mode for Eth0
Previous by thread: Re: promiscuous mode for Eth0
Next by thread: unstability due to large scsi disk
Index(es):
- Date
- Thread