ARP poisoning etc (was: mixed system backups)

[Richard Cottrill]

I'm aware of ARP poisoning as an attack (and using arpwatch to counter) on a
switched network; but what are other ways to redirect traffic on a switched
network?

Richard

---

Damien's prophetic words:
>"Alfred" <alfred at mazuma.net.au> writes:
>
>> Unless you use one of the many possible hacks to redirect the data past a
>> compromised machine :) (its pretty trivial to do and hard to counter).
>
>> > If you have switches or secure hubs then only the two endpoints of a
>> > connection see that traffic.
>
>yeah, AFAIK even on a switch you can spoof ARP packets and do a man in the
>middle attack. it's not a trivial process compared to a standard exploit,
but
>it's not impossible and there are tools out there that can help you with
the
>process.