Fergal Daly wrote:
[Packet sniffing]
>>Well if the subnet you sit on is not switched
> Aboslutely but then again I think not being switch would be far worse at the
> server end than the client end.
Ethernet switches are not security devices, particularly in their
default configuration. Do no rely on them to perform as such. Routers
aren't always as secure as we'd like to think either.
http://www.theregister.co.uk/content/55/22406.html
When sending details like credit card numbers, you also have to worry
about how secure the site is overall - a 128-bit security certificate
isn't enough. It's not unheard-of for 'secure' sites to have their
database servers wide-open to hacking.
Paul.
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
