[BlueOnyx:01840] Re: Second Server Hacked

Maurice de Laat mdlaat at muisnetwerken.nl
Mon Jul 27 08:47:56 PET 2009


On Mon, Jul 27, 2009 at 08:39:17AM -0500, Mark E. Levy wrote:

> It the olden days of hubs, this was indeed a real danger. However, 
> unless the perp also has administrative access to the switch and can set 
> up a monitor port (assuming that the switch has that capability, AND the 
> BQ/BO server is on the same switch), merely plugging in a sniffer to an 
> open port will only net them broadcast packets.

Maybe we're getting a little off topic here, but administrative access to 
the switch is not needed. Just flood the memory of the switch with 
different mac addresses and it's starting to behave as a hub.

http://en.wikipedia.org/wiki/MAC_flooding
-- 
Maurice de Laat



More information about the Blueonyx mailing list