how to find out promiscuous mode
Gilboa Davara
gilboad at gmail.com
Thu Feb 4 10:02:42 UTC 2010
On Thu, 2010-02-04 at 01:38 -0600, Bruno Wolff III wrote:
> On Thu, Feb 04, 2010 at 09:06:27 +0200,
> Gilboa Davara <gilboad at gmail.com> wrote:
> >
> > Having said all that, if your network is switched (as opposed to using
> > cheap FE hubs), only broadcast traffic (ARP/DHCP/etc) will be visible in
> > promisc mode.
>
> Mostly. There are other circumstances where a packet can be sent to all of
> the ports even without machines/people trying to game things.
>
> General advice is to treat switches as a way of improving network related
> performance (relative to hubs), not as security devices.
I fully agree. (I never meant to suggest that switches are to be treated
as security devices - though I can understand why my post could be read
as such)
If you want to move sensitive information over the wire, use strong
encryption.
- Gilboa
More information about the users
mailing list