[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Mostly Apache some Sniffit



JOO>> > Today I tried for the first time a Sniffer (sniffit) and I was amazed to
JOO>> > see what it can do to our privecy :-(
JOO>> > Is there a way to make Alarm when someone try to sniff my Net / Users ?
JOO>> 
JOO>> I don't think so.  The key is to use encrypted communications
JOO>> when ever possible.  You can't catch them because they don't

In fact, there are a way to detect that your interface is in promiscous
mode (needed for sniffing other machines). Search bugtraq archives for
more, I don't remember exactly where it is. And about local machine - if
anyone got to run sniffer there, you have much bigger trouble, since
sniffers are run as root ;) But there's much simpler way t detect it -
just looking on ifconfig output should suffice.

And then - use ssh instead of telnet, and if you are paranoid - scp
instead of ftp, et cetera.
-- 
frodo@sharat.co.il	\/  There shall be counsels taken
Stanislav Malyshev	/\  Stronger than Morgul-spells
phone +972-2-6245112	/\  		JRRT LotR.
http://sharat.co.il/frodo/	whois:!SM8333