[BlueOnyx:01840] Re: Second Server Hacked
Maurice de Laat
mdlaat at muisnetwerken.nl
Mon Jul 27 08:47:56 -05 2009
On Mon, Jul 27, 2009 at 08:39:17AM -0500, Mark E. Levy wrote:
> It the olden days of hubs, this was indeed a real danger. However,
> unless the perp also has administrative access to the switch and can set
> up a monitor port (assuming that the switch has that capability, AND the
> BQ/BO server is on the same switch), merely plugging in a sniffer to an
> open port will only net them broadcast packets.
Maybe we're getting a little off topic here, but administrative access to
the switch is not needed. Just flood the memory of the switch with
different mac addresses and it's starting to behave as a hub.
http://en.wikipedia.org/wiki/MAC_flooding
--
Maurice de Laat
More information about the Blueonyx
mailing list