On Tue, 19 Dec 2000, RoMaN SoFt / LLFB!! wrote:
On Tue, 19 Dec 2000 10:49:23 +0100, you wrote:
"SecurityPortal has a very interesting article by Kurt Seifried in which he writes "dsniff 2.3 allows you to exploit several fundamental flaws in two [snip]
Does anyone have dsniff 2.3 running on Suse 6.4? I just tried to compile
I tried dsniff some time ago. It compiled perfectly, appropiate libs included. But I noted that it doesn't work very well.
1) I telneted to another machine (in the same lan-segment as mine) and dsniff didn't catch anything. I telneted to my own machine (the one running dsniff) and then it caught well. Why? Please note that other sniffers like Sniffer Pro (on WinNT, same machine [dual boot]) works perfectly: they catch ALL traffic, include the one to other local machines. I mean, it's no problem of switching. 2) Repeating the former proccess, user/pass is not catch in all cases. It shows like a bit random behaviour.
Comments? Depends on your network. If you use switches then dsniff cant sniff so easily. To use dnsiff there you must invoke some other tools which are delivered with it. Normal sniffers only work in hub-ed environment.
Sebastian