RE: Linux Network Security: POP

To: Joris Lambrecht <jlambrec@landis.be>
Cc: debian-user@lists.debian.org
Subject: RE: Linux Network Security: POP
From: Jason Gunthorpe <jgg@debian.org>
Date: Mon, 19 Mar 2001 02:16:45 -0700 (MST)
Message-id: <[🔎] Pine.LNX.3.96.1010319021028.799C-100000@wakko.deltatee.com>
In-reply-to: <[🔎] 471B774D9F9BD411B93E00508BB087A644E9D9@BE020-EX11>

On Mon, 19 Mar 2001, Joris Lambrecht wrote:

> I asssumed cable modems were encrypting there communications with some
> simple built-in algorithm

It is my understanding that modern DOCSIS modems use encryption between
the cable modem and the cable head end. The motorola cybersufr brand has
been doing this forever as well. This prevents someone from using some
sort of cable analyser to sniff datagrams after they hit the wire.. 

I wouldn't count on the encryption being actually super secure, but it is
unlikely that someone is going to be sniffing packets by examining the
signals on the coax.

> as you should be, cable modems generally are equivilent to large
> unswitched lans, which means any bozo with a cable modem can set thier
> machine to primisquous mode and see every packet sent by any cable
> modem user.  (at least for that segment) 

This is certianly untrue for modern cable stuff. In general, the bandwidth
on the actual coax is far greater than 10mbit ethernet (coming out of the
modem), even if the modem wanted to it couldn't spew all packets onto the
local lan.

Jason

Reply to:

References:
- RE: Linux Network Security: POP
  - From: Joris Lambrecht <jlambrec@landis.be>

Prev by Date: RE: Linux Network Security: POP
Next by Date: apt-get and growing cache
Previous by thread: RE: Linux Network Security: POP
Next by thread: need help on setting up a ppp connection
Index(es):
- Date
- Thread