Re: Linux Network Security: POP

To: Ethan Benson <erbenson@alaska.net>
Cc: Debian User <debian-user@lists.debian.org>
Subject: Re: Linux Network Security: POP
From: Phil Brutsche <pbrutsch@tux.creighton.edu>
Date: Sun, 18 Mar 2001 19:02:20 -0600 (CST)
Message-id: <[🔎] Pine.LNX.4.32.0103181842570.8698-100000@tux.creighton.edu>
In-reply-to: <[🔎] 20010318145345.D29721@plato.local.lan>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

A long time ago, in a galaxy far, far way, someone said...

> unless they changed something in the last year or so, come to alaska
> and get GCI's cable modems, i have personally seen where every packet
> sent across the network is happily deposited into my friends
> lan. (this was a while ago though)

No, Nathan's right - the DOCSIS units don't allow much sniffing to go on.

On my own cable modem all I see is my own traffic and alot of ARP traffic.

> though in many cases you don't need to do any sniffing since they also
> bridge unrouteable protocols like appletalk and netbios, simply hook
> up a mac or windows box and go poking around all the hundreds of wide
> open shares. or run your neighbors appletalk printer out of paper...
> (or did they do something about this too?)

Some are starting to do something about it.  I've heard that @Home is
starting to block NetBIOS/TCP traffic; I'm sure it's not a big step to
block non-IP/IPv6 traffic from there.

> well when you ask GCI if they could please route mail worth a damn
> they say `im sorry that cannot be done' ;-)  same thing with `can you
> please avoid regular week long failures of your network?'

Work around the breakage :)  Ask someone you know & trust to relay your
mail for you over ssh or ssl/tls-enabled daemons.

> clueful isp? wuahahahahahaHAHAHHAHAHAHAHHAHAH
>
> those are as extinct as the dinosoars. :/

Aren't they (a clueful ISP) one of those nearly mythical creatures only
fabled to exist, like a unicorn?

BTW, I find that all the clue drains from the ISPs and accumulates at the
one or two universities present in each large city :)

> using your isp's mail service runs you the risk of having very large
> quantities of your mail simply dropped in the bit bucket without you
> ever knowing about it.  my isp recently added murphy.debian.org to
> thier silent bitbucket list, i cannot be sure they don't have more
> machines on such a thing.  (it was hard enough to convince them that i
> KNEW they were throwing away mail, they tried to just blow me off,
> when i started talking about having no such problems getting the mail
> from another machine out of state they decided to fix the problem
> rather then risk me coming down thier to lart them personally)

There's an unwritten rule that if something breaks they don't do anything
about it until someone yells loud enough or it affects their entire
netowrk. ;)

- -- 
- ----------------------------------------------------------------------
Phil Brutsche				    pbrutsch@tux.creighton.edu

GPG fingerprint: 9BF9 D84C 37D0 4FA7 1F2D  7E5E FD94 D264 50DE 1CFC
GPG key id: 50DE1CFC
GPG public key: http://tux.creighton.edu/~pbrutsch/gpg-public-key.asc
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.4 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE6tVqf/ZTSZFDeHPwRAjbdAJ9UF1Slcu+Ja4L7fgmRLIcKgDei+gCeP5Jk
IFW4xE0reYpJmpFJJtM6ffo=
=L4Ox
-----END PGP SIGNATURE-----

Reply to:

References:
- Re: Linux Network Security: POP
  - From: Ethan Benson <erbenson@alaska.net>

Prev by Date: Flash Player ?
Next by Date: Re: mouse
Previous by thread: Re: Linux Network Security: POP
Next by thread: Re: Linux Network Security: POP
Index(es):
- Date
- Thread