1 |
On Thursday 15 December 2005 10:08 pm, Grant wrote: |
2 |
> > > > How can I see what is happening as far as traffic on my unencrypted |
3 |
> > > > network? |
4 |
> > > |
5 |
> > > tcpdump |
6 |
> > |
7 |
> > ntop is a good network summary program too. Works good if you can run it |
8 |
> > on your default gateway machine. tcpdump is pretty cool for sure. |
9 |
> |
10 |
> The network is just run from a router. No server on which I can run |
11 |
> that stuff. Is there anything I can use from my workstation which is |
12 |
> connected to the network? |
13 |
|
14 |
You can run it on your workstation as well and you will see broadcast traffic |
15 |
and traffic going to your computer. If you are on a hub, you should see all |
16 |
traffic connected to the hub. |
17 |
|
18 |
> |
19 |
> > > > How can I keep my own http traffic private? |
20 |
> > > |
21 |
> > > Use https instead. IPSec is another option, if supported. Also, |
22 |
> > > traffic is normally only passed along the links between you and the |
23 |
> > > server, unless there's some hub between you can them. |
24 |
> > > |
25 |
> > > You may be able to anonymize normal http by using tor. I think freenet |
26 |
> > > also provides some level of anonymity and encryption for http, but I've |
27 |
> > > never used it. |
28 |
> > |
29 |
> > You can only use https on servers that support it. The question is too |
30 |
> > vague to answer without specifying from who do you want to keep the data |
31 |
> > private? Just people on your local network? Your ISP? Your boss? The http |
32 |
> > servers? |
33 |
> |
34 |
> I'm only trying to keep the data private from the other people on the |
35 |
> local network. |
36 |
> |
37 |
|
38 |
Who administrates your router and/or network? What kind of router is it? Are |
39 |
you using a swtich? Assuming you have a basic network setup using a simple |
40 |
switch and a simple router you would generally be private for outgoing http |
41 |
traffic unless there is someone sophisticated enough to be running something |
42 |
like ettercap to confuse the switch. |
43 |
|
44 |
If you have no idea and if you have a remote computer you can connect to for |
45 |
browsing (maybe something at your home or elsewhere) you can remote control |
46 |
into it (using ssh tunnels for encryption) and then browse privately from |
47 |
that machine. |
48 |
|
49 |
Are you expecting the other hosts on your network to be monitoring your http |
50 |
traffic? If there is some suspected method of them monitoring you it may |
51 |
require a specific technique to avoid their monitoring. |
52 |
|
53 |
In any case, where does "gentoo" fall into this whole deal? This is a gentoo |
54 |
list. |
55 |
-- |
56 |
gentoo-user@g.o mailing list |