On 11 Apr 1998, Michael Conlen wrote:
> If a host in a DMZ is hacked and the host is connected to a switch,
> wouldnt it be possible to forge ARP packets which supply the MAC address
> and start the sniffer up?
Yes. Just because you have a switched Ethernet in place, does not mean
you can't sniff packets destined for other hosts. You need a router in
the middle to really seperate the two distinct data paths.
Josh Richards - <jrichard @
com> - [Beta Engineer]
LUCENT Technologies - Remote Access Business Unit
(formerly Livingston Enterprises, Inc.)