Michael,

I am just checking all my Links. Let me know what happens. I moved from over there to over here.

I just, also went to Backbox 4.0.
Image

John J. Macey / Wildwood, New Jersey
480-242-1503/

Biotech Consultant Office: 480-242-1503 / Fax: 480-242-1503
310 E. Hand Avenue #12 Wildwood, New Jersey 08260
http://jjmacey.net/blog

This e-mail message may contain confidential or legally privileged information and is intended only for the use of the intended recipient(s). Any unauthorized disclosure, dissemination, distribution, copying or the taking of any action in reliance on the information herein is prohibited. E-mails are not secure and cannot be guaranteed to be error free as they can be intercepted, amended, or contain viruses. Anyone who communicates with me, or my affiliations, by e-mail is deemed to have accepted these risks. John J. Macey is not responsible for errors or omissions in this message and denies any responsibility for any damage arising from the use of e-mail. Any opinion and other statement contained in this message and any attachment are solely those of the author and do not necessarily represent those of the company.

On 11/03/2014 02:56 PM, Michael Butash wrote:
On 11/02/2014 02:46 PM, Bob Holtzman wrote:
Dandy, but looking at source code tells a nonprogrammer (me) little.

I guess I'll just coast along with https for the important stuff even
tho I've read that it can be spoofed.

I only read source code when I have to figure out obscure driver error conditions on garbage code.  Or morbid curiosity.

Really what i mean is seeing what is opening sockets on your box and transmitting data.  Use of "iftop", tcpdump, wireshark, or other applications will show you this in the way of open socket/port connections.  Use of "ss" or "netstat" with various flags (that I've posted before for Havens) to see what is opening listening sockets or establishing connections out.  From there you can examine the packets, might be amazed to see readable ascii flying past in the network data payloads.

Used to be fun to sit on the office switch on a span/monitor port doing network diagnostics when you begin to see people's credentials coming across too.  Learned what dsniff was for then for some fun quite early on in my career to harvest credentials of my buddies to torment.  ;)

Started enforcing SSL and encryption for myself shortly after.

-mb
---------------------------------------------------
PLUG-discuss mailing list - PLUG-discuss@lists.phxlinux.org
To subscribe, unsubscribe, or to change your mail settings:
http://lists.phxlinux.org/mailman/listinfo/plug-discuss