November 8th, 2003, 11:37 PM
can someone sniff my network without having an account of any kind? Or would they need to exploit to root... but if so why sniff?
November 8th, 2003, 11:43 PM
Sniffing your network requires a virtual or physical prescence on your network..... I can't sniff you from here because I can't "see" your network.
If you have a network secured from the internet then I can't see the traffic passing across it..... If it isn't secure I could install a sniffer that will report all traffic to me.......
Don\'t SYN us.... We\'ll SYN you.....
\"A nation that draws too broad a difference between its scholars and its warriors will have its thinking done by cowards, and its fighting done by fools.\" - Thucydides
November 9th, 2003, 12:25 AM
ok thanks so much.. one more question if I may. Is there a certain level of access required in order to install the sniffer? Could anyone with access to write install one?
November 9th, 2003, 12:33 AM
They could put an executable on your network but they couldn't install it without running it from your computer. you would have to run the executable for it to be installed.
November 9th, 2003, 01:19 AM
This might be a bit off topic, but I cant figure out how to post a new topic...(sry for being such a n00b)
November 9th, 2003, 01:55 AM
At the top of the forum you want to post in, there will be a button "New Thread". Click on that and post your new topic. Just be sure to search the forums first to make sure that your topic hasn't already been brought up or your question answered. To search go to the top right of the main page and there will be a little box there to type in your search terms. Welcome to AO.
November 9th, 2003, 04:50 AM
ok thx heretic. I couldnt find the forums. lol.
November 9th, 2003, 03:57 PM
one question from me too... if u r working on internet, can anyone sniff into ur mailbox or your system??
Now is the moment, or NEVER!!!
November 9th, 2003, 04:39 PM
I guess that would depend on the services you have running. I would say that yes they could sniff into your email by sniffing your username and password or catching it with a keylogger. They could also sniff onto your system I guess. If they can join your network they can at least access any shares you have. Then they could put an executable in one of your shared directories, like some sort of trojan. And if you run the executable then they will get control. I would password protect my shares and make them read only. If I were you I would turn off file sharing and get a good firewall. If you have a wireless network there are a few tutorials at AO on securing wireless networks. The best advice I can give you is be paranoid. Get all the antivirus/firewall/antispyware/antitrojan software, and update and use it.
November 9th, 2003, 04:59 PM
Actual sniffing is placing a computer on a network that collects packets and does something with them. Either logs them or searches them for certain strings (like username: password to collect information. You don't actually sniff a mailbox or anything like that, but you can set up a sniffer to just watch your computers connections to your email server. But if someone was going to take the time to sniff your network, they would get more then just your email.
You do need acess to the network, and you have to be able to run the NIC in promiscius mode. This means that the network card will read all packets, not just the ones that are addressed to that network card. To set the network card to promiscius mode, you do need root/administrator access on that machine. But someone could set up their own machine on your network in a hidden location as long as they had root on that machine. They don't need admin access on the network, just 1 machine which will be set up as a sniffer. If you a running a switched network (switches, not hubs) its a lot harder to set up a sniffing box because you also need access to the switch.
\"Ignorance is bliss....
but only for your enemy\"