Re: Disabling Promisc mode,

Richard B. Johnson (root@chaos.analogic.com)
Wed, 27 May 1998 17:22:17 -0400 (EDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Andrej Presern: "__get_free_pages()"
Previous message: Aaron M. Ucko: "Re: Prob with X and kernels i compile !!!"
In reply to: Joel Jaeggli: "Re: Disabling Promisc mode,"

>
> This is impossible through software. If a user gains root
> access, and if the NIC has a promiscuous mode which is software
> selectable, then that user can put the NIC into promiscuous mode.
> Proof is left as an Exercise for the Reader.
>
I think the idea is to disable this mode within the kernel and
not leave the kernel source laying around within the machine. That
way, even root can't get raw promiscous packets.

But... If the machine will boot DOS, the user can execute LANWatch
(Ftp Software, Inc) or some other similar software, and capture all
the packets he/she wants. The solution is, of course, run off
a switch....

Cheers,
Dick Johnson
***** FILE SYSTEM MODIFIED *****
Penguin : Linux version 2.1.103 on an i586 machine (66.15 BogoMips).
Warning : It's hard to remain at the trailing edge of technology.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu

Next message: Andrej Presern: "__get_free_pages()"
Previous message: Aaron M. Ucko: "Re: Prob with X and kernels i compile !!!"
In reply to: Joel Jaeggli: "Re: Disabling Promisc mode,"