[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Caching a sniffer

To: Full Disclosure <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: Re: [Full-Disclosure] Caching a sniffer
From: Cael Abal <lists2@xxxxxxxxxx>
Date: Thu, 11 Mar 2004 00:19:22 -0500

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Ian Latter wrote:

> While there's no way to be sure-sure ... you can get into your
> local LAN segment and send ICMP(/whatever) requests to the
> correct L3 address with the wrong L2 address and see if you
> get a response; this will show you if hosts/devices are listening
> promiscuously (which makes for a good starting point).

Not necessarily?

I thought that depended on the ip stack implementation.

Cael
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (MingW32)

iD8DBQFAT/baR2vQ2HfQHfsRAgZ0AJ46xhi8rNDXAt5TIHUZL2Il/Lil1gCfeGsE
GiGW9xeSwCMYgGPl1JvLwNE=
=nLkQ
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- Re: [Full-Disclosure] Caching a sniffer
  - From: Ian Latter

Prev by Date: RE: [Full-Disclosure] Comcast using IPS to protect the Internetfrom their home user clients?
Next by Date: Re: [Full-Disclosure] Comcast using IPS to protect the Internet from their home user clients?
Previous by thread: Re: [Full-Disclosure] Caching a sniffer
Next by thread: RE: [Full-Disclosure] Caching a sniffer
Index(es):
- Date
- Thread