On Tue, 2004-11-23 at 20:01 +0000, Neil Davies wrote: > > -----Original Message----- > From: fedora-list-bounces@xxxxxxxxxx [mailto:fedora-list-bounces@xxxxxxxxxx] > On Behalf Of Matthew Miller > Sent: 23 November 2004 19:55 > To: For users of Fedora Core releases > Subject: Re: Need a sniffer/password capture to prove telnet is bad > > On Tue, Nov 23, 2004 at 02:47:05PM -0500, Alex Evonosky wrote: > > >down the gauntlet for me to get his password. He telnets into his > > >home machine from work and I want to capture that, so what I am > > >looking for is something that can be run from my machine, listen to > > >his here at work and capture his home password without knowing > > >explicitly the address of > [...] > > Ethereal can capture that just fine in promisc mode... > > But, if it's a switched network, you'll need to actually be somewhere in the > path his packets are travelling. (Or somehow convince the switch to send all > packets your direction, which may not be trivial.) > > > > > This is called a SNAP port, so if your switch doesn't support them, then > they won't work. > > -Neil > > Well, being as I am the administrator, and have a couple of boxes available. I could always attach one on his switch and use that. Kind of like the stories I heard of people using PS2s with linux. From what I read, they would hide them in the ceiling tiles and be able to sniff from outside. Of course, that required that the hacker have actual physical access. Anyhooo, I will try ethereal. If I can't do it from my machine, I will attach one to the switch he is on. I just have to prove him wrong. He is becoming irritating. He doesn't accept that I have been too inundated to futz around with that. He thinks I can't do it. Thanks all. > -- Edward M. Croft Sr. Systems Engineer Open Ratings, Inc. 200 West Street Waltham, MA 02451-1121
