Re: hijacking TCP connections on FreeBSD

From: martin f krafft (madduckat_private)
Date: Wed Jul 10 2002 - 12:22:32 PDT

Next message: KF: "Fw: Buffer overflow potential in centerICQ mail handling"

Previous message: Juan M. Courcoul: "Re: Plain text password for Microsoft (icwip.dun)"
In reply to: jmiller: "Re: hijacking TCP connections on FreeBSD"
Next in thread: Andreas Krennmair: "Re: hijacking TCP connections on FreeBSD"
Next in thread: tide: "Re: hijacking TCP connections on FreeBSD"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

also sprach jmiller <secadminat_private> [2002.07.10.0711 +0200]:
> a man in the middle is not neccessary, you sniff the packets, spoof your ip
> and or mac, then dos the other box you are spoofing. there is a *nix tool
> that will do an arp flood, turning all switches into a hub, so you do not
> need to be on the same subnet either. search for it on freshmeat.net

switches and hubs don't separate subnets. you will have to be on the
same subnet regardless of the possibility to arpflood switches (only
the cheapest), or you guess replies and hijack blindly.

-- 
martin;              (greetings from the heart of the sun.)
  \____ echo mailto: !#^."<*>"|tr "<*> mailto:" net@madduck
  
"one should never trust a woman who tells her real age.
 if she tells that, she'll tell anything."
                                                        -- oscar wilde

application/pgp-signature attachment: stored

Next message: KF: "Fw: Buffer overflow potential in centerICQ mail handling"
Previous message: Juan M. Courcoul: "Re: Plain text password for Microsoft (icwip.dun)"
In reply to: jmiller: "Re: hijacking TCP connections on FreeBSD"
Next in thread: Andreas Krennmair: "Re: hijacking TCP connections on FreeBSD"
Next in thread: tide: "Re: hijacking TCP connections on FreeBSD"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Jul 10 2002 - 12:38:27 PDT