From: Michele Andreoli (andreoli@pisoft.it)
Date: Mon Apr 12 1999 - 16:49:08 CEST
Hi, folk! A lot of nice english follow ...
This was'nt to do, maybe, but I have stripped some "unuseful" C code
from sniffit, the full-screen ncurses part, of course [ or "of ncurses"? ].
You know "sniffit"? A very dangerous program. I now know his
mephistophelic power!
With this command:
# sniffit -p 23 -a -t 192.168.1.1
on client side (192.168.1.2) and telnetting to server, I saw my password
flying on the screen!
With this command:
# sniffit -p 21 -a -t 192.168.1.1
I saw my e-mail bodies & headers around.
Ok, this is a "moral" question: many Linux distros comes with "sniffit",
but sniffit on a trasportable Linux is a weapon. Using sniffit in a LAN
you can log any passord, e-mails, etc.
On the other hand, a tool like that can be useful for test and demonstrate
the unsafeness of TCP networks. A lot of pedagogy :)
This "sniffit" binary is about 30k.
LO VOLETE VOI? Do you want "sniffit"?
Michele (Michael, Miguel, Mikail - a male name)
-- Mi sarebbe piaciuto concludere con un'affermazione positiva, ma non me ne vengono in mente. Vanno bene due negative? -- Woody Allen
This archive was generated by hypermail 2.1.6 : Sat Feb 08 2003 - 15:27:11 CET