pokhara Posted February 18, 2007 Share Posted February 18, 2007 can someone on the same network as you force open a popup window in your firefox browser ? im not talking about a web server opening a popup im talking about another computer user sharing te same network ? some kind of man in the middle attack or proxy server subterfuge ? Quote Link to comment Share on other sites More sharing options...
Sparda Posted February 18, 2007 Share Posted February 18, 2007 Possible, not exactly easy to do. Quote Link to comment Share on other sites More sharing options...
pokhara Posted February 18, 2007 Author Share Posted February 18, 2007 if i was using the internet via their adsl wifi, ie leeching, what if they ran a proxy server on the gateway ? could they see what connections to http i had open and then forge a packet with the correct credentials and send it to me ? this would get through my firewall easily, they would just create the packet with the source port and ip of a connection i already had open ?? Quote Link to comment Share on other sites More sharing options...
Sparda Posted February 18, 2007 Share Posted February 18, 2007 They wouldn't even need to 'forge a packet with the correct credentials' if they hadset up a transparent proxy. They would just edit the web pages you receive on the fly, and for all intents and purposes it's impossible for you to tell it's even happened. Quote Link to comment Share on other sites More sharing options...
pokhara Posted February 18, 2007 Author Share Posted February 18, 2007 with wireless it appears anything is possible, could another client machine (possibly another leecher) perform the same attack ? imagine we are both leeching off the same unsecured wifi hotpsot, could he intercpet my packets and do his transparent proxy trick ? im such a lame brain at this stuff. i used to do sysadmin but dont know a thing about hacking, another question please: does an arp scan flag up on a firewall ? looks like i found the answer: ettercap Quote Link to comment Share on other sites More sharing options...
Sparda Posted February 18, 2007 Share Posted February 18, 2007 Another wireless user should be able to perform this, but they would have do do a ARP poisoning first. Some firewalls can detect ARP poison attacks and defend against them, but there is 'no' way to defend against a transparent proxy tampering with your received web pages. Quote Link to comment Share on other sites More sharing options...
pokhara Posted February 18, 2007 Author Share Posted February 18, 2007 i think he is using ettercap and arp poisoning, if i wanted to do this trick i would need two wireless network cards so i could act as a gateway/mitm/proxy right ?? Quote Link to comment Share on other sites More sharing options...
Sparda Posted February 18, 2007 Share Posted February 18, 2007 i think he is using ettercap and arp poisoning, Who is 'he'? Quote Link to comment Share on other sites More sharing options...
pokhara Posted February 18, 2007 Author Share Posted February 18, 2007 my neighbour where i live, im pretty certain he sent me some strange popups on firefox today, he either owns the open network or he leeches i do. do i need 2 wireless nics to do an ettercap arp poison mitm attack ? Quote Link to comment Share on other sites More sharing options...
Sparda Posted February 18, 2007 Share Posted February 18, 2007 What makes you think this? Perhaps your computer is infected with adware. Quote Link to comment Share on other sites More sharing options...
pokhara Posted February 18, 2007 Author Share Posted February 18, 2007 good point, ill run an adware scan. is lavasoft adaware sufficient ? Quote Link to comment Share on other sites More sharing options...
Sparda Posted February 18, 2007 Share Posted February 18, 2007 Probably, but I never do any such scans, so I'm not in a position to say. Quote Link to comment Share on other sites More sharing options...
RobotChild Posted February 18, 2007 Share Posted February 18, 2007 AVG Antispyware is what I use. Quote Link to comment Share on other sites More sharing options...
SomeoneE1se Posted February 18, 2007 Share Posted February 18, 2007 look in to airpwn and sypbot s&d and ad-aware and getting your own secured network. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.