Can you 'fake' an IP address?
Jamon Camisso
jamon.camisso-H217xnMUJC0sA/PxXw9srA at public.gmane.org
Tue Mar 13 18:25:46 UTC 2012
On 12-03-13 01:57 PM, Alejandro Imass wrote:
> Yeah, I am no expert but even in these cases you need to be the man in
> the middle or at least in the same network segment. Most modern
> switches will automatically detect and block ARP poisoning but there
> are a lot which don't . Anyway as you say it is highly unlikely as the
> perpetrator must be (a) on the same segment/mask, (b) the network
> infrastructure be old/cheap/hub , (c) OR the perpetrator has control
> over a router/gateway where the poisoning is most effective. Even for
> sniffing you need to be quite proficient and basically useless outside
> a specific network segment.
metasploit was hijacked via ARP poisoning a few years ago:
http://seclists.org/fulldisclosure/2008/Jun/13
If it can happen to Mr. Moore, it can happen to anyone.
Jamon
--
The Toronto Linux Users Group. Meetings: http://gtalug.org/
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://gtalug.org/wiki/Mailing_lists
More information about the Legacy
mailing list