From: LordDoskias (lorddoskias@gmail.com)
Date: Sat Feb 23 2008 - 20:09:04 EST
dork_4love@yahoo.com wrote:
> Greetings,
>
> I am working in cooperate with friend running an ISP ,my friend
>
> installed PPPoE ,by that he says that it will be immune to packet sniffing
>
> -My question:
>
> --Is it possible to run the usual arp spoofing ,sniffing,ssl mitm on
>
> PPPoE installed networks?
>
> --And if that feasible does ettercap is capable of doing such duty? or
>
> there are other tools to test that?
>
>
> Regards,
>
> Bernard
>
> ------------------------------------------------------------------------
> This list is sponsored by: Cenzic
>
> Need to secure your web apps NOW?
> Cenzic finds more, "real" vulnerabilities fast.
> Click to try it, buy it or download a solution FREE today!
>
> http://www.cenzic.com/downloads
> ------------------------------------------------------------------------
>
>
>
There is no problem sniffing the pppoe packets if you arp poison the
network - the thing is whether your friend uses CHAP/PAP or something
else for encrypting the passwords between the peer and the concentrator
------------------------------------------------------------------------
This list is sponsored by: Cenzic
Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!
http://www.cenzic.com/downloads
------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:58:25 EDT