Encryption for MSN Messenger (2 avoid sniffers)
Page 1 of 2 12 LastLast
Results 1 to 10 of 11

Thread: Encryption for MSN Messenger (2 avoid sniffers)

  1. #1
    Junior Member
    Join Date
    Apr 2003
    Posts
    26

    Unhappy Encryption for MSN Messenger (2 avoid sniffers)

    1. We are working on a large LAN, which is not secure. People can use packet sniffers to check the data that is going from my PC to the proxy server and discover if the data requests include MSN communication. I need a method whereby the traffic being generated from my IP cannot be spoofed and sorted. In short, I need an encryption method. Please suggest something.
    2. Secondly, people on the network are also using software that allows them to generate requests to the proxy server and make it seem as if the requests are generated from my IP. Its like virtually using my IP for sending requests to the proxy and getting the privileges that my IP has. Help.
    Life would have been alot easier if I had the source code!

  2. #2
    Senior Member
    Join Date
    Jan 2002
    Posts
    1,207

    Re: Encryption for MSN Messenger (2 avoid sniffers)

    Originally posted here by PakiBlue
    1. We are working on a large LAN, which is not secure.
    Sounds like your LAN needs an upgrade.

    If you're using a large unswitched LAN, firstly you are going to have very poor performance, because a single transfer can "max out" the segment for everyone.

    Secondly, as you've pointed out, it allows sniffing.

    You say it's a "Large" LAN - care to qualify it?

    I would say, that if you can't afford to upgrade the entire thing, buy a fast switch, and use it as a "backbone" for your servers, important users, and routers / proxies, and hang the other hubs off there. Then at least users won't be able to sniff stuff from other segments any more.

    As far as IP address takeover is concerned, you could get a switch with built in ARP caching capabilities and add static ARP entries for your important IP addresses to prevent unauthorised use of that IP.

    Alternatively, you could just note the MAC addresses of the boxes which are attempting to take over a privileged IP address and then just ban them from the switch - then the users would complain pretty fast and you'd find out who they were.

    You could also reconfigure your proxy server to use authentication instead of IP-based security.

    Slarty

  3. #3
    Junior Member
    Join Date
    Apr 2003
    Posts
    26
    Actually, it's the University's LAN - you would have the idea about university LANs spreading in every single room of the hostel. I'm just another user not admin; so upgrading is not my part of problem as such.

    And no, speed is not a concern at all!

    Thanks for the IP take-over help. Is there more to it?

    My real concern is privacy. I just want that nobody can actually sniff my messenger conversations (plus anything else). Encryption is possible? It's pretty basic need but I don't find a solution. Please help
    Life would have been alot easier if I had the source code!

  4. #4
    Super Moderator: GMT Zone nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,191
    PakiBlue

    Hi there, this is not quite what you are asking for, but IMHO might be of use for you as you say that you are using MSN?

    http://www.bitdefender.com

    They do security/protection for MSN and a number of other popular IM applications. I believe that these are to protect you from malware and such, rather than data security, but I would suggest that this should be part of your comprehensive security solution?

    The applications are "free"

    Hope this helps,

    Cheers
    If you cannot do someone any good: don't do them any harm....
    As long as you did this to one of these, the least of my little ones............you did it unto Me.
    What profiteth a man if he gains the entire World at the expense of his immortal soul?

  5. #5
    Senior Member
    Join Date
    Apr 2002
    Posts
    1,049
    I use simp from secway if you want to talk with encryption with it the people you want to talk to has to have it installed as-well
    By the sacred **** of the sacred psychedelic tibetan yeti ....We\'ll smoke the chinese out
    The 20th century pharoes have the slaves demanding work
    http://muaythaiscotland.com/

  6. #6
    Just a Virtualized Geek MrLinus's Avatar
    Join Date
    Sep 2001
    Location
    Redondo Beach, CA
    Posts
    7,324
    What about simply using SSH tunnelling rather than a new application? That way you can tunnel it on the university area (which is where you're more likely to get sniffed) but still use the standard apps.

    Just a random idea on it. Use google ("tutorial + ssh tunnelling") to find necessary hints/howtos. There's lots of info out there.
    Goodbye, Mittens (1992-2008). My pillow will be cold without your purring beside my head
    Extra! Extra! Get your FREE copy of Insight Newsletter||MsMittens' HomePage

  7. #7
    Junior Member
    Join Date
    Apr 2003
    Posts
    26
    Thanks nihil and prodikal for your help.

    Yo, I find secway to be of some help. Yeah, I know encryption works pair... C'mon, am not that bad; was just asking for solutions.

    SSH tunneling? I'm digging...
    thanks Mittens
    Life would have been alot easier if I had the source code!

  8. #8
    Old Fart
    Join Date
    Jun 2002
    Posts
    1,658
    www.ceruleanstudios.com is the home of Trillian, which accesses MSN, ICQ, AOL, Yahoo and IRC. Using Trillian as your IM client at both ends of the conversation supposedly allows for a direct encrypted connection. May be what you are looking for, may not.

    Just my .02.....
    Al
    It isn't paranoia when you KNOW they're out to get you...

  9. #9
    Old Fart
    Join Date
    Jun 2002
    Posts
    1,658
    Oops...I found this today and it looks very promising.
    Al
    It isn't paranoia when you KNOW they're out to get you...

  10. #10
    Senior Member Syini666's Avatar
    Join Date
    Aug 2001
    Posts
    551
    here is another encrypted IM program that uses both 2048 bit RSA and 448 bit Blowfish. Not the most visually pleasing client, but its upside is that it uses Java and can run on just about any platform with a Java Virtual Machine.
    You're not your post count, You're not your avatar or sig, You're not how fast your internet connection is, You are not your processor, hard drive, or graphics card. You're the all-singing, all-dancing crap of AO
    09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

 Security News

     Patches

       Security Trends

         How-To

           Buying Guides