IPSec, is it possible?
Daniel T. Staal
DStaal at usa.net
Tue Oct 10 13:16:01 PDT 2006
On Tue, October 10, 2006 4:05 pm, Jens Ropers said:
>> I just don't like the feeling that people from my LAN
>> can see which web pages I read what e-mails I receive e.t.c. Yes I have
>> switches but everybody knows that this does not mean any protection.
>> Many
>> sniffers are able to sniff on switched network without any problem.
>>
>> MK
>
> This is probably a really stupid newbie question, but can anyone
> explain why sniffing other users' traffic on a properly switched
> network is even possible? How would that work? Presumably the
> eavesdropper would need to get a switch to send that traffic to their
> own box, no?
I can only think of two ways:
* The 'switch' isn't actually a switch, or it's not configured properly.
It is instead (acting as) a hub, and just has the name 'switch' on the
case.
* The switch has been hacked to do the eavesdropping itself, or to forward
some selection of the traffic to the eavesdropper.
Neither are impossible. Both are easier to prevent than setting up an
IPSEC bridge. (And have better performance characteristics as well.)
Daniel T. Staal
---------------------------------------------------------------
This email copyright the author. Unless otherwise noted, you
are expressly allowed to retransmit, quote, or otherwise use
the contents for non-commercial purposes. This copyright will
expire 5 years after the author's death, or in 30 years,
whichever is longer, unless such a period is in excess of
local copyright law.
---------------------------------------------------------------
More information about the Openbsd-newbies
mailing list