TAILIEUCHUNG - LAN Switch Security What Hackers Know About Your Switches

LAN and Ethernet switches are usually considered as plumbing. They are easy to install and configure, but it is easy to forget about security when things appear to be simple. Multiple vulnerabilities exist in Ethernet switches. Attack tools to exploit them started to appear a couple of years ago (for example, the well-known dsniff package). By using those attack tools, a hacker can defeat the security myth of a switch, which incorrectly states that sniffing and packet interception are impossible with a switch. Indeed, with dsniff, cain, and other user-friendly tools on a Microsoft Windows or Linux system, a hacker can easily divert any traffic to. | LAN Switch Security What Hackers Know About Your Switches Eric Vyncke and Christopher Paggen, CCIE No. 2659 Cisco Press Cisco Press 800 East 96th Street Indianapolis, IN 46240 USA ii LAN Switch Security What Hackers Know About Your Switches Eric Vyncke Christopher Paggen Copyright© 2008 Cisco Systems, Inc. Published by: Cisco Press 800 East 96th Street Indianapolis, IN 46240 USA All rights reserved. No part of this book may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopying, recording, or by any information storage and retrieval system, without writ- ten permission from the publisher, except for the inclusion of brief quotations in a review. Printed in the United States of America First Printing August 2007 Library of Congress Cataloging-in-Publication Data: Vyncke, Eric. LAN switch security : what hackers know about your switches / Eric Vyncke, Christopher Paggen. p. cm. ISBN 978-1-58705-256-9 (pbk.) 1. Local area networks (Computer networks)--Security measures. 2. Telecommunication--Switching systems-- Security measures. I. Paggen, Chris. II. Title. III. Title: What hackers know about your switches. 2008 2007030673 ISBN-13: 978-1-58705-256-9 ISBN-10: 1-58705-256-3 Warning and Disclaimer This book provides information about vulnerabilities linked to Ethernet switches and how to prevent or mitigate attacks against a switch-based network. Every effort has been made to make this book as complete and as accurate as possible, but no warranty or fitness is implied. The information is provided on an “as is” basis. The authors, Cisco Press, and Cisco Systems, Inc., shall have nei- ther liability nor responsibility to any person or entity with respect to any loss or damages arising from the informa- tion contained in this book or from the use of the discs or programs that may accompany it. The opinions expressed in this book belong to the author and are not necessarily those of Cisco Systems, .

• An ninh - Bảo mật
• Introduction to Security
• Defeating a Learning
• Vulnerabilities
• Mitigation Technique
• Introduction to Security
• Ethernet Switching
• Lecture On safety and security of information systems
• On safety and security of information systems
• Introduction to information systems security
• History of information security
• Information systems security
• Bài giảng Bảo mật hệ thống thông tin
• Computer Security
• Introduction to Computer Security
• Security in Practice
• Pillars of Security
• Methods of Defense
• Principles of Computer Security
• Database System
• Database Security An Introduction
• Introduction to Database Security Issues
• Discretionary Access Control
• Mandatory Access Control
• Fundamental data security requirements
• Network Security
• Introduction Network Security
• Security Trends
• OSI Security Architecture
• Aspects of Security
• Security Attack
• Designing security
• Microsoft networks
• Security design
• Analyzing security risks
• Security awareness seminar
• An introduction to ISO27k
• Information security
• Security responsibilities
• Managing information security
• Data security
• Data security and encryption
• Symmetric ciphers
• Asymmetric ciphers
• Cryptographic data integrity algorithms
• Mutual trust
• Database Systems
• Database Security Issues
• Role Based Access Control
• Public World
• Private Communication
• programming languages​​
• computer networks
• IDS systems
• Web engineering
• Introduction to web engineering
• Web applications
• Web application development
• Web application security
• Web security
• Introduction to Privacy in Computing
• Recognition of the need for privacy
• Threats to privacy
• Privacy Controls
• Privacy in pervasive computing
• Introduction to Trust in Computing
• Selected Trust Characteristics
• Selected Research Issues in Trust
• Avoiding Traps of Trust Complexity
• Trust and Privacy
• Introduction to MIS
• Management Information Systems
• Information systems
• Internet security issues
• Data protection
• Access controls
• Ajax security
• Introduction to ajax security
• The heist
• Web attacks
• Ajax attack surface
• Ajax code complexity
• Transparency in ajax applications
• Hijacking ajax applications
• Trusted Network Connect
• attack techniques
• defensive techniques
• operating system security
• application security
• security policy
• Introduction to Cryptography
• Introduction data Security
• Stream Ciphers
• The Advanced Encryption Standard
• Internal Structure of AES
• Introduction to Public Key Cryptography
• The RSA Cryptosystem
• Vigenkre Ciphers
• CONVENTIONAL CRYPTOGRAPHY
• Linear Cryptanalysis
• Multipermutations
• SECURITY ANALYSIS
• ALGORITHMIC ALGEBRA
• Security Hypothesis
• related literature
• Saphenous Vein
• Graft Disease – State
• Drug Eluting Balloon
• Additional Therapy
• Cell Death Following
• Plant Genes
• Abiotic Stress
• Tumors (GEP NETs)
• Diagnosis and Management
• Neuroendocrine Carcinoma
• Unknown Primary
• Security goals
• Security mechanisms
• Elliptic Curve Cryptosystems
• Implementation of ECC
• An toàn thông tin
• Bảo mật thông tin
• Mandatory access controls
• Introduction to Mandatory Access Control
• MAC in Oracle Oracle Label Security
• Security Classes
• MAC properties
• Multilevel relation
• Microsoft internet security
• Acceleration server 2004
• Acceleration server
• Microsoft ISA server 2004
• Maintaining ISA server
• Internet resources