[Snort-devel] Man in the middle attacks
David.Dominick at ...540...
Mon Nov 19 12:43:04 EST 2001
Has anybody found an efficient way of detecting man in the middle attacks
that utilize flaws in ARP caching/ One attack in particular, Etercap,
poisons the arp cache of the target machine. I know that sniffing for arp
warnings would be ridiculous, so does anybody have any suggestions?
Enterprise Security Engineering
More information about the Snort-devel