Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP Path: utzoo!mnetor!uunet!husc6!cmcl2!rutgers!dayton!umn-cs!tjacob From: tjacob@umn-cs.UUCP (Thomas Jacobson MSC) Newsgroups: comp.unix.xenix,comp.sources.wanted,comp.unix.questions Subject: Re: Ethernet watcheri (was: tty watcher) Message-ID: <2171@umn-cs.UUCP> Date: Tue, 22-Sep-87 15:18:44 EDT Article-I.D.: umn-cs.2171 Posted: Tue Sep 22 15:18:44 1987 Date-Received: Sat, 26-Sep-87 18:20:51 EDT References: <4263@ozdaltx.UUCP> <15136@hi.UUCP> <1903@ttrdc.UUCP> Organization: University of Minnesota, Minneapolis Lines: 28 Summary: ethernet watcher promiscuous mode Xref: mnetor comp.unix.xenix:818 comp.sources.wanted:2378 comp.unix.questions:4243 In article <1903@ttrdc.UUCP>, levy@ttrdc.UUCP (Daniel R. Levy) writes: > > Are you sure that your code will be written so that it takes a true guru to > readily modify it to add the "cracking" functions? If not you might want to > think twice about sending it out, or post a uuencoded binary instead. > -- > |------------Dan Levy------------| Path: ..!{akgua,homxb,ihnp4,ltuxa,mvuxa, > | an Engihacker @ | vax135}!ttrdc!ttrda!levy > | AT&T Computer Systems Division | Disclaimer: i am not a Yvel Nad > |--------Skokie, Illinois--------| Most SUN's require su priv to get to the ethernet card, or, if it's reading data out of /dev/kmem, there are more security holes than I care to think about. The real problem with ethernet watchers is that anything on the net is available for viewing. At the U of Mn, where there is a campus wide network, many of our terminals are connected via terminal concentrators to the network, and as such, almost all su's and associated passwords get sent across the net. I don't think that you should worry about posting source code because anyone following the MIT PC/IP discusisoons can pick up a free software package that can very easily be modified to do what you're against. ( NOTE: my position is the same as Dan's - I don't like to see software like this used with the intent to break a system. As one of these network guru's working on networks for the SuperComputer Center here, this has caused no end to the headaches... ) In conclussion, I like to see such software posted, in source form, and think it's unreasonable to expect the author to supervise or watchdog it's use.