LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)
-   -   Wireshark + remote ip (https://www.linuxquestions.org/questions/linux-security-4/wireshark-remote-ip-4175457125/)

LeHibou2 04-06-2013 10:13 AM
Wireshark + remote ip
 
Hi,

I just need to be sure that one cannot capture all the traffic incoming/outgoing from my server.

I would not any hacker to know who is connecting or so.

Saw a lot of videos on the net, read a lot of articles and cannot understand how people can steal passwords / other info whereas lot of people say that you have to be connected to the switch of the remote network you spy.

I want to protect my ssl servers.

Should I need to worry ?

Thanks,

Larry

unSpawn 04-06-2013 08:17 PM
Quote:
Originally Posted by LeHibou2 (Post 4926318)
I just need to be sure that one cannot capture all the traffic incoming/outgoing from my server.
Capturing traffic requires root rights or access to network equipment. In essence though your question points to what you should do first: ensure the machine is properly configured, hardened and regular auditing is in place.


Quote:
Originally Posted by LeHibou2 (Post 4926318)
I want to protect my ssl servers.
Explain?


Quote:
Originally Posted by LeHibou2 (Post 4926318)
Should I need to worry ?
"Thinking", "worrying" or "guessing" is unnecessary as computing is binary in the sense that conditions can be tested: a user account has a strong password or it hasn't, an application is either vulnerable or it isn't, a connection is either safe (SSH) or it isn't (telnet). Analyze the situation, test, make a list and rate measures by effectiveness, apply, test.


All times are GMT -5. The time now is 12:49 PM.