Ethereal

Re: [Ethereal-users] Spoofed packets...
Google
 
Web Ethereal.com

Home | Introduction | Documentation | Lists | FAQ | Development | Wiki | Bugs

Main Index | Thread Index | Mailing Lists | | Date Prev | Date Next | Thread Prev | Thread Next

Ethereal-users: September 2001

 

> It is quite easy to put a packet out with the wrong 
> IP information.  With a bit more access to the Ethernet
> driver, it is quite easy to put an arbitrary hardware
> source address.

...and, on some platforms, the only access you need is that offered by
the same raw packet I/O mechanism that tcpdump and Ethereal and the like
use to capture packets - said mechanism often also supports *sending*
raw packets, and, depending on the hardware and driver, may simply put
the raw link-layer packet on the wire, with the header supplied by the
program, complete with, on LANs, the MAC addresses from that header.

That works on Solaris 2.6, for example.

Powered by MHonArc 2.6.10

Please send support questions about Ethereal to the ethereal-users[AT]ethereal.com mailing list.
For corrections/additions/suggestions for this web page (and not Ethereal support questions), please send email to ethereal-web[AT]ethereal.com.
Last modified: Fri, November 10 2006.
"Ethereal" and the "e" logo are registered trademarks of Ethereal, Inc.