Linux Today: Linux News On Internet Time.
Search Linux Today
Linux News Sections:  Developer -  High Performance -  Infrastructure -  IT Management -  Security -  Storage -
Linux Today Navigation
LT Home
Contribute
Contribute
Link to Us
Linux Jobs


Top White Papers

  • A global data storage provider whose business is booming needed a best-in-class data center to serve as the backbone of its technical operations going...
    Download

  • Corporate e-Learning technology has a long and diverse pedigree. As far back as the 1980s, companies were adopting computer-based training to supplement...
    Download

More on LinuxToday


Linux Journal: The High-Tech How Not to be Seen, Part 1

Nov 06, 1999, 01:52 (4 Talkback[s])
(Other stories by Marcel Gagné)

"Last week, I gave you an introduction to network sniffers. If you took the time to play with sniffit, for instance, you noticed that your telnet sessions are plaintext, and the sniffer program will display everything coming from and going to your network interface. Sure, you can spy on your users, but are they spying on you?"

"The problem is that while TCP/IP is truly wonderful and has given us this bright, beautiful Internet of ours, it is inherently insecure. You see, when the protocol was first created, we were a little less worried about people looking over our electronic shoulders and watching us work. After all, computers were big, magical, scary things that only a handful of people really understood. Not so any more."

"Imagine you are the system administrator at BigCompanyInc and you've just read my last six articles, tied down your Linux server, did a pile of reading on your own, tied it down even further, and a few days later you discover a break-in. What happened? One possibility is Joe Cracker plugged into your 200-port network with his Linux notebook (it's easy to hide in a 200-station office), started a sniffer, and waited while people logged in and left their plaintext user names and passwords. The grand prize was the root password, which you let slip by as you telnetted to your SAMBA server. Suddenly, Joe Cracker has full access to your system all over again."

Complete Story

Related Stories: