Not necessairly. Many systems, unless configured not to, will accept a gratituitous ARP. Meaning that even if they have the ARP entry, if they see the ARP broadcast with a new MAC, they will take it, whether they had it or not... This is one of the big things that DSNIFF takes advantange of.Originally posted here by paranoid_sonic
[B]Thx a lot!
Yes, I can use JNI (phew).
The ARP cashe poisoning would probably work, but i can not do it like that:
I HAVE TO send a disconnect message to all logged in users.
Seems kind of a strange project to DoS wireless, but I would think your traditional type of DoS attacks would be much simpler...for example, smurf (spoofed ping to broadcast with WAP as source), maybe some bad routing advice (kind of depends on what they are using and whether or not it is static)...
/nebulus
Reply With Quote