Path: utzoo!mnetor!uunet!husc6!mailrus!nrl-cmf!ames!amdahl!pyramid!prls!philabs!aecom!naftoli From: naftoli@aecom.YU.EDU (Robert N. Berlinger) Newsgroups: comp.dcom.lans Subject: Re: Security on ethernet, recent LAN mag article Message-ID: <1701@aecom.YU.EDU> Date: 29 Mar 88 02:26:28 GMT References: <4805@ecsvax.UUCP> Organization: Albert Einstein College of Medicine, NY Lines: 24 Keywords: ethernet,security In article , ron@topaz.rutgers.edu (Ron Natalie) writes: > Better than that, someone wrote a program for a sun that > allows you to evesdrop on complete TCP connections (provided > that the net is lightly loaded enough). Ethernets are not > secure. Neither are your RS-232 lines. We used to tap terminal > lines quite a bit (it's a lot easier than ethernet). > > -Ron Yes but the significant difference is that the Ethernet cable comes right to a potentially malicious user's office whereas RS-232 is point to point. If you want to tap RS-232 you need to get in close proximity to the cable (where physical security can protect you), but with Ethernet the malintent need only obtain the appropriate software. In short, if you want to be careful, don't use telnet to system logins (e.g., root) if you don't want your passwords to leak out. Theft of services (by stealing a user login) is a considerable problem if your user population can't be trusted. -- Robert N. Berlinger | /------Preferred-------\ Supervisor of Systems Support |Domain: | naftoli@aecom.yu.edu | Scientific Computing Center |UUCP: {philabs,cucard,ihnp4}!aecom!naftoli Albert Einstein College of Medicine |CompuServe: 73047,741 GEnie: R.Berlinger