Is it possible to force open a window on a Firefox Browser ?

[pokhara]

can someone on the same network as you force open a popup window in your firefox browser ?

im not talking about a web server opening a popup im talking about another computer user sharing te same network ?

some kind of man in the middle attack or proxy server subterfuge ?

[Sparda]

Possible, not exactly easy to do.

[pokhara]

if i was using the internet via their adsl wifi, ie leeching,

what if they ran a proxy server on the gateway ?

could they see what connections to http i had open and then forge a packet with the correct credentials and send it to me ?

this would get through my firewall easily,

they would just create the packet with the source port and ip of a connection i already had open ??

[Sparda]

They wouldn't even need to 'forge a packet with the correct credentials' if they hadset up a transparent proxy. They would just edit the web pages you receive on the fly, and for all intents and purposes it's impossible for you to tell it's even happened.

[pokhara]

with wireless it appears anything is possible,

could another client machine (possibly another leecher) perform the same attack ?

imagine we are both leeching off the same unsecured wifi hotpsot,

could he intercpet my packets and do his transparent proxy trick ?

im such a lame brain at this stuff.

i used to do sysadmin but dont know a thing about hacking,

another question please: does an arp scan

flag up on a firewall ?

looks like i found the answer: ettercap

[Sparda]

Another wireless user should be able to perform this, but they would have do do a ARP poisoning first.

Some firewalls can detect ARP poison attacks and defend against them, but there is 'no' way to defend against a transparent proxy tampering with your received web pages.

[pokhara]

i think he is using ettercap and arp poisoning,

if i wanted to do this trick i would need two wireless network cards so i could act as a gateway/mitm/proxy right ??

[Sparda]

i think he is using ettercap and arp poisoning,

Who is 'he'?

[pokhara]

my neighbour where i live,

im pretty certain he sent me some strange popups on firefox today,

he either owns the open network or he leeches i do.

do i need 2 wireless nics to do an ettercap arp poison mitm attack ?

[Sparda]

What makes you think this? Perhaps your computer is infected with adware.

[pokhara]

good point,

ill run an adware scan.

is lavasoft adaware sufficient ?

[Sparda]

Probably, but I never do any such scans, so I'm not in a position to say.

[RobotChild]

AVG Antispyware is what I use.

[SomeoneE1se]

look in to airpwn and sypbot s&d and ad-aware and getting your own secured network.