[Dshield] Internal LAN protection

Andrew Barnes tetsuo at cadvision.com
Sat Nov 24 04:48:31 GMT 2001


ZyXEL OEMs to Netgear..

----- Original Message -----
From: "Johannes B. Ullrich" <jullrich at euclidian.com>
To: <dshield at dshield.org>
Sent: Friday, November 23, 2001 8:50 PM
Subject: RE: [Dshield] Internal LAN protection


> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
>
>
> > There are commercial all-in-one boxes that will do the trick too, and
> > they are a lot cheaper than PC.  I myself use a 4 port box from
> > ZyXEL.
>
> I don't know about the ZyXEL devices. But please do not mix up a $100
> linksys router / switch with a serious firewall.
>
> Most (not just cheap) switches are vulnerable to ARP spoofing. Whoever
> claims that such a switch is more secure than a hub hasn't spent enough
> time playing with toys like hunt or ettercap.
>
> Also, switches do not limit communications between the ports. You need a
> switch that looks at least at the IP layer to do much good.
>
>
>
> - --
> - -------
> jullrich at sans.org                    Join http://www.DShield.org
>                           Distributed Intrusion Detection System
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.0.6 (GNU/Linux)
> Comment: For info see http://www.gnupg.org
>
> iD8DBQE7/xklVOIizK5pIDMRAsjdAKD4crvMbzPSBLMOGBMV2AwkqczvBwCg5Z6c
> jDr3jlTRyV59LAxjX1f82M8=
> =Zb0g
> -----END PGP SIGNATURE-----
>
> _______________________________________________
> Dshield mailing list
> Dshield at dshield.org
> To change your subscription options (or unsubscribe), see:
http://www1.dshield.org/mailman/listinfo/dshield
>




More information about the list mailing list