Firewalls: Re: Man in the Middle Attacks (Over rated?)

Firewalls
(November 1995)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Man in the Middle Attacks (Over rated?)
From:	jgs @ aads . net (John G. Scudder)
Date:	Tue, 7 Nov 1995 21:47:36 -0500
To:	David R Conrad <davidc @ iij . ad . jp>
Cc:	mulligan @ incog . com, firewalls @ GreatCircle . COM

At 3:36 PM 11/4/95, David R Conrad wrote:
>P.S. I believe the NSFNet routers were general purpose Unix machines
>(IBM RS6000s) with high speed serial interfaces.

Correct.  Each serial interface has its own forwarder and sends packets
directly across the uChannel to the egress interface.  The CPU doesn't see
the packets.  There's no publically documented interface to the serial
interface, and certainly no /dev/nit.  As a result, it would be no easier
to sniff packets on an NSFNET router than on your favorite router vendor's
(non-workstation based) router.

--John

Follow-Ups:

Re: Man in the Middle Attacks (Over rated?)
From: David R Conrad <davidc @ iij . ad . jp>

Indexed By Date	Previous:	security policy From: chris sieber <sieber @ colorado . edu>
Indexed By Date	Next:	Re: fairly recent web server compromise... From: FEH Systems Philadelphia <morph_1 @ netaxs . com>
Indexed By Thread	Previous:	Re: Man in the Middle Attacks (Over rated?) From: sedayao @ argus . intel . com (Jeffrey C. Sedayao)
Indexed By Thread	Next:	Re: Man in the Middle Attacks (Over rated?) From: David R Conrad <davidc @ iij . ad . jp>