Firewalls: Promiscuous mode

Firewalls
(October 1997)

Indexed By Thread: [Previous] [Next]

Subject:	Promiscuous mode
From:	Rik Hemsley <hemsleyr @ keyline . co . uk>
Date:	Mon, 13 Oct 1997 13:24:39 +0000
To:	Firewalls @ GreatCircle . COM

Hi, I'm new to the list.

During my seacurity self-teaching process, I've
heard about network interfaces being in 'promiscous'
mode.. and this being a Bad Thing(tm)

I get the idea, but what kind of workarounds are
there, aside from encrypting every communication ?

A sniffer needs a machine to run on; and to read packets
over the local net, it needs to be inside, right ?
( or can it spoof ? )

Is it every necessary for an interface to be in promisc.
mode and if not, how do you 'switch it off ?'

Thanks in advance,
Rik

Follow-Ups:

Re: Promiscuous mode
From: Bernd Eckenfels <lists @ lina . inka . de>

Indexed By Date	Previous:	Radius for Firewall-1 3.0 From: "Denis Koo N.C." <denis . koo @ hkcg . com>
Indexed By Date	Next:	Re: my Promiscuous mode query From: Rik Hemsley <hemsleyr @ keyline . co . uk>
Indexed By Thread	Previous:	Re: Radius for Firewall-1 3.0 From: Brian Betterton <brian_betterton @ INS . COM>
Indexed By Thread	Next:	Re: Promiscuous mode From: Bernd Eckenfels <lists @ lina . inka . de>