[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-Disclosure] Caching a sniffer

To: "'Full Disclosure List'" <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: RE: [Full-Disclosure] Caching a sniffer
From: "Motiwala, Yusuf" <motiwala@xxxxxx>
Date: Thu, 11 Mar 2004 16:44:00 +0530

TDR will not work if someone running Sniffer on existing network port.
Isn't?

Yusuf


> -----Original Message-----
> From: full-disclosure-admin@xxxxxxxxxxxxxxxx [mailto:full-disclosure-
> admin@xxxxxxxxxxxxxxxx] On Behalf Of Dave Horsfall
> Sent: Thursday, March 11, 2004 8:22 AM
> To: Full Disclosure List
> Subject: Re: [Full-Disclosure] Caching a sniffer
> 
> On Wed, 10 Mar 2004, Patricio Bruna V. wrote:
> 
> > How can i know if there a sniffer running in my network?
> 
> When you wake up one day to find that you're 0wn3d :-)
> 
> Seriously, about the only way I can think of to detect a sniffer with
> its transmit leads cut is with a Time Domain Reflectometer (TDR) and
> look for an unexplained impedance bump.
> 
> --
> Dave Horsfall  DTM  VK2KFU                         Loyal Unix user since
> 1975
> Booted from Spamtools for dissing the moderator:
> www.horsfall.org/levine.mail
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- RE: [Full-Disclosure] Caching a sniffer
  - From: Dave Horsfall

Prev by Date: Re: [Full-Disclosure] Caching a sniffer
Next by Date: [Full-Disclosure] Searching chroot-like jail for Windows
Previous by thread: Re: [Full-Disclosure] Caching a sniffer
Next by thread: RE: [Full-Disclosure] Caching a sniffer
Index(es):
- Date
- Thread