-
February 12th, 2007, 05:19 AM
#11
On the topic of sniffing I found out one day at an internship just how trusting the internal network was. I was setting up a Linux box basically to use for monitoring of customers with problems (see also: for the hell of it) and for some reason I figured it would be good to install Ethereal just in case it was needed(was interning at an ISP just for some background), so naturally it needed to be tested as well... wow was that a scare when it suddenly started showing up all the internal traffic and passwords galore!
I don't think I've ever wanted to close a window so fast in my life. Came to find out later that the internal network actually had two freaking hubs as the center points of it all; I wouldn't have believed the guy when he told me except for the fact we were standing right next to the two boxes! Sounds like its a rare occasion but this was an ISP with on the order of 35-40,000 customers. More on-topic we used telnet for managing the ERX, probably the Juniper M10i, and also a few of our more ancient DSLAMs out in the field, so I can only imagine that learning the admin passwords to all the core gear would have been a trivial matter of waiting for someone to login to it. I might have been a level-headed non-douche intern during my time there but I'm sure there were some wanna-bes there that would have not taken the high road when presented with such a tempting target.
You're not your post count, You're not your avatar or sig, You're not how fast your internet connection is, You are not your processor, hard drive, or graphics card. You're the all-singing, all-dancing crap of AO
09 F9 11 02 9D 74 E3 5B D8 41 56 C5 63 56 88 C0
Similar Threads
-
By ThePreacher in forum Miscellaneous Security Discussions
Replies: 17
Last Post: December 14th, 2006, 09:37 PM
-
By gore in forum Newbie Security Questions
Replies: 11
Last Post: December 29th, 2003, 08:01 AM
-
By el-half in forum AntiOnline's General Chit Chat
Replies: 4
Last Post: December 12th, 2003, 01:25 PM
-
By NullDevice in forum *nix Security Discussions
Replies: 0
Last Post: September 17th, 2003, 09:31 PM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
|