Post New Topic  Post A Reply
my profile | register | search | faq | forum home
  next oldest topic   next newest topic
» MacOSX -   » Ported Packages   » UnSecurity 1: Spoofing and sysctl

UBBFriend: Email this page to someone!    
Author Topic: UnSecurity 1: Spoofing and sysctl
Member # 16

posted August 19, 2001 06:40 AM      Profile for jasont     Send New Private Message      Edit/Delete Post  Reply With Quote 
Sup kids? So you just started running this great script for peeping passwords from people. Hey, you even tested it on yourself and found those lost passwords to your mail/aim/napster/etc. But, for some reason when you turn it on and try it with other people it just doesn't work....

OOOOOPS man sysctl

You're not getting mommy, daddy, and that evil sister-in laws passwords because you forgot to turn on ipforwarding *note: some apps like fragrouter allegedly do this for you*

Worse still! Nobody can access the net...except maybe you depending on what you're using. You're not seeing passwords because nothing past your machine is seeing requests.

Spoofing, unlike merely sniffing, actively utilizes your machine to forward information to each machine. So...before you get all happy on your bosses mastercard account number you need to do this
sysctl -w net.inet.ip.forwarding=1
(1 is on) the manual
when you're done being promiscuous
sysctl -w net.inet.ip.forwarding=0
(0 is off)

Posts: 50 | From: Palo Alto, CA | Registered: Aug 2001  |  IP: Logged

All times are Pacific Time  

Post New Topic  Post A Reply Close Topic    Move Topic    Delete Topic next oldest topic   next newest topic
Hop To:

Contact Us |

Powered by Infopop Corporation
Ultimate Bulletin BoardTM