AOA,
I know how to block it by using ISA server, have done it a long time ago..
how to block MSN Sniffer
Kind Regards
Mudasir Mirza (RHCE)
(+971)55-1045754
http://www.crystalnetworks.org
http://www.diglinux.com
Mudasir Mirza (RHCE)
(+971)55-1045754
http://www.crystalnetworks.org
http://www.diglinux.com
-
securitykid
- Naik
- Posts: 70
- Joined: Sat Oct 20, 2007 5:18 am
Case of Arp spoofing & MAC Spoofing!
Hi Guys,
Sorry for jumping in!, a case is ARP Spoofing (ARP Poisoning) & MAC Spoofing, Solutions are there BUT depends on size of network & budget.
Just for an original requester information "Not just only the MSN & Yahoo conversations, if an attacker is extra smart(which I am doubt he is) can even launch DNS poisoning and redirect users to login to to forged MSN or YAHOO websites and steal a use full informations, He/she can get the passwords roving over the network in clear text (Which I know do in most LANs) & lot others... not good to define in such posts. (I use to do lot when I was curious geek
)
-------Solutions / Workaround-----
Small & Low budget Networks:
There is no common defense against ARP spoofing when it comes to low budgets networks. Although there some workaround to limit the damage.
Try encouraging/force users to install desktop firewalls, there are some good firewalls which can detect the possible ARP Poisoning and MAC Spoofing when it occurs, and sometimes lock an attackers machine itself, IF he is not doing it intentionally, MAYBE a Trojan(who knows)
or If he is doing it intentionally doing it, hmmm let me remember there is an other way around to encounter.... by the way how do you detected an attacker? wait for my next post I might come up with some solutions also I will give you the links & downloads for such softwares if forum ADMIN allow me to do that (Dear ADMIN Asking your permission? I am new in linuxpakistan)
For Large or HIGH Budget networks
Managed switches are good solution proposed by one of my brother earlier.
There are lot others, if anyone interested, I will love to share
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=---=-=-=-=
So if admin allows me to post links I may give you workaround to limit the damage, by the way I remember in last that I use to kill other ARP Poisoning attacks so that I can remain wholly solly! and control over the network, (when I use to play with such hacking Techniques)
, I would say not a hacking actually its is exploiting the limitations of Network and devices.
For me if you want to protect your network from such bullies users you have to become one of them by this at least you will protect your user privacy
Thanks
SecurityKID
Sorry for jumping in!, a case is ARP Spoofing (ARP Poisoning) & MAC Spoofing, Solutions are there BUT depends on size of network & budget.
Just for an original requester information "Not just only the MSN & Yahoo conversations, if an attacker is extra smart(which I am doubt he is) can even launch DNS poisoning and redirect users to login to to forged MSN or YAHOO websites and steal a use full informations, He/she can get the passwords roving over the network in clear text (Which I know do in most LANs) & lot others... not good to define in such posts. (I use to do lot when I was curious geek
) -------Solutions / Workaround-----
Small & Low budget Networks:
There is no common defense against ARP spoofing when it comes to low budgets networks. Although there some workaround to limit the damage.
Try encouraging/force users to install desktop firewalls, there are some good firewalls which can detect the possible ARP Poisoning and MAC Spoofing when it occurs, and sometimes lock an attackers machine itself, IF he is not doing it intentionally, MAYBE a Trojan(who knows)
or If he is doing it intentionally doing it, hmmm let me remember there is an other way around to encounter.... by the way how do you detected an attacker? wait for my next post I might come up with some solutions also I will give you the links & downloads for such softwares if forum ADMIN allow me to do that (Dear ADMIN Asking your permission? I am new in linuxpakistan)
For Large or HIGH Budget networks
Managed switches are good solution proposed by one of my brother earlier.
There are lot others, if anyone interested, I will love to share
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=---=-=-=-=
So if admin allows me to post links I may give you workaround to limit the damage, by the way I remember in last that I use to kill other ARP Poisoning attacks so that I can remain wholly solly! and control over the network, (when I use to play with such hacking Techniques)
, I would say not a hacking actually its is exploiting the limitations of Network and devices.For me if you want to protect your network from such bullies users you have to become one of them by this at least you will protect your user privacy
Thanks
SecurityKID
Last edited by securitykid on Sun Nov 18, 2007 12:34 am, edited 1 time in total.
SecurityKID-ITdotCOM
Security Every Where! BUT where?
Security Every Where! BUT where?
-
securitykid
- Naik
- Posts: 70
- Joined: Sat Oct 20, 2007 5:18 am
Seems like no one interested :)
I got an approval from admin,
BUT seems like no one interested
I didn't get any comments
Thanks
SecurityKID-ITdotCOM
BUT seems like no one interested
I didn't get any comments
Thanks
SecurityKID-ITdotCOM
Last edited by securitykid on Sun Nov 18, 2007 12:26 am, edited 1 time in total.
SecurityKID-ITdotCOM
Security Every Where! BUT where?
Security Every Where! BUT where?
-
raheelahmad
- Naik
- Posts: 87
- Joined: Tue Mar 06, 2007 4:58 am
- Location: Karachi
- Contact:
-
securitykid
- Naik
- Posts: 70
- Joined: Sat Oct 20, 2007 5:18 am
-
securitykid
- Naik
- Posts: 70
- Joined: Sat Oct 20, 2007 5:18 am