From owner-freebsd-net Wed Jul 28 15: 0: 4 1999 Delivered-To: freebsd-net@freebsd.org Received: from jade.chc-chimes.com (jade.chc-chimes.com [216.28.46.6]) by hub.freebsd.org (Postfix) with ESMTP id 7A99714C8E for ; Wed, 28 Jul 1999 15:00:02 -0700 (PDT) (envelope-from billf@jade.chc-chimes.com) Received: from localhost (billf@localhost) by jade.chc-chimes.com (8.9.3/8.9.3) with ESMTP id RAA16938; Wed, 28 Jul 1999 17:01:21 -0400 (EDT) (envelope-from billf@jade.chc-chimes.com) Date: Wed, 28 Jul 1999 17:01:21 -0400 (EDT) From: Bill Fumerola To: Garrett Wollman Cc: "Jordan K. Hubbard" , net@FreeBSD.ORG Subject: Re: cvs commit: src/release/sysinstall tcpip.c In-Reply-To: <199907281544.LAA09659@khavrinen.lcs.mit.edu> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Wed, 28 Jul 1999, Garrett Wollman wrote: > Switches won't help (unless you turn learning off and manually > configure every Ethernet address in your entire network into every > switch). All an attacker has to do to sniff your packets is to send > packets pretending to be you, thereby causing the switches to learn > the attacker's location. Not when I tell my switch that port 1 is VLAN 1 and port 2 is VLAN 2. Port 1 will never see port 2's traffic. -- - bill fumerola - billf@chc-chimes.com - BF1560 - computer horizons corp - - ph:(800) 252-2421 - bfumerol@computerhorizons.com - billf@FreeBSD.org - To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message