Great Circle Associates Firewalls
(August 1995) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Reply to: Re: IPWatcher
From: Cameron_A_P @ ceo . sbic . co . za
Date: Wed, 2 Aug 95 13:57:42+2
To: bmanning @ ISI . EDU, firewalls @ Greatcircle . com 
CEO comments:
From: Cameron A P:SBIC
Date: ## 08/02/95 12:12 ##
Thanks
That is what I thought. The Problem is that the Vendors of various 
Unix Systems cannot supply encryption to sites outside the USA.

Preceeding Message:
From: bmanning @
 ISI .
 EDU:smtp
Date: ## 08/02/95 11:25 ##
> 
> Message:
> I have come accross a package on Internet Called IPWatcher. This 
> package renders Firewalls and Smart Cards Useless in that it allows 
> the person using it to Hijack and take over an established connection.
>  
> The URL to get more Info on this package is
> http://nad.infostructure.com/watcher.html
>  
> My Question and problem is how do you prevent this from happening. 
> Also are there other Hacker tools that can do this.

There are a number of other facilities to hijack sessions.
The only way around it is end2end encryption.  Then, although
a session can be hijacked, it is crypted and therfore useless.

--bill
Indexed By Date Previous: Re: IPWatcher
From: Darren Reed <avalon @ coombs . anu . edu . au>
Next: Re: Re: Using miltilevel systems for firewalls
From: Ted Doty <ted @ kgbvax . network . com>
Indexed By Thread Previous: Which Firewall
From: puseya @ allenovery . com
Next: connectathon: BOGUS // testing methodologies
From: Marcus J Ranum <mjr @ iwi . com>
Google
 
Search Internet Search www.greatcircle.com