From owner-freebsd-questions@FreeBSD.ORG  Mon Aug 16 14:33:16 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 8053816A4CE
	for <freebsd-questions@freebsd.org>;
	Mon, 16 Aug 2004 14:33:16 +0000 (GMT)
Received: from mymail.netmagicians.com (mymail.netmagicians.com
	[202.87.39.126])	by mx1.FreeBSD.org (Postfix) with SMTP id 07E5F43D2F
	for <freebsd-questions@freebsd.org>;
	Mon, 16 Aug 2004 14:33:15 +0000 (GMT)
	(envelope-from sid@netmagicsolutions.com)
Received: (qmail 4978 invoked from network); 16 Aug 2004 14:47:44 -0000
Received: from sid@netmagicsolutions.com by netmagicsolutions.com by uid 504
	with qmail-scanner-1.16  (uvscan: v4.3.20/v4100.  Clear:. 
	Processed in 0.753072 secs); 16 Aug 2004 14:47:44 -0000
Received: from intra.netmagicsolutions.com (HELO ?10.1.1.161?) (202.87.39.242)
  by mymail.netmagicians.com with SMTP; 16 Aug 2004 14:47:43 -0000
Message-ID: <4120C5AB.1060100@netmagicsolutions.com>
Date: Mon, 16 Aug 2004 20:03:15 +0530
From: Siddhartha Jain <sid@netmagicsolutions.com>
User-Agent: Mozilla Thunderbird 0.7.1 (Windows/20040626)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: freebsd-questions@freebsd.org
X-Enigmail-Version: 0.84.2.0
X-Enigmail-Supports: pgp-inline, pgp-mime
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
Subject: Is promiscuous mode bad?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 16 Aug 2004 14:33:16 -0000

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

JJB wrote:

| Promiscuous mode can also be enabled on most hardware routers. A
| hardware router in front of a private network with promiscuous mode
| enabled allows public internet users to access (sniff) all the
| traffic passing through the router as well as insert packets. This
| is major security leak and one that spoofers look for.
|

I am curious, how do you do that? From what I understand, a promiscous
mode allows someone on the box to see all packets that hit the
interface. How does it allow an attacker (outside the box) to sniff
packets hitting that interface?

Thanks,

- --
Siddhartha Jain (CISSP)
Consulting Engineer
Netmagic Solutions Pvt Ltd
Bombay - 400063
Phone: +91-22-26850001 Ext.128
Fax  : +91-22-26850002
http://www.netmagicsolutions.com



-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (MingW32)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFBIMWrOGaxOP7knVwRAj1nAJ9Ae+5APNi4YgeSNwxMkrv7jwUbjQCeLftp
8BIhFJfN9b5S2xUTDctKcuI=
=bt2X
-----END PGP SIGNATURE-----