Hey all.
Now this isn't totally Linux related but I know their are a lot of network pros here so I hope you can help!
I have a server co-hosted and it is in a /24 subnet on a switched network. All machines are part of the same VLAN
Now I am concerned as to how much other people on this switch segment can see of my server. I run POP3/IMAP, etc and am concerned people could sniff my passwords.
I've tried a little experiment by connecting to my server with an IMAP client and then tcpdumping the traffic - all I get is something like the below:
Code:
19:29:15.143226 <myserver>.imap > myhomepc.4515: P 250:496(246) ack 69 win 5840 (DF)
Which seems quite promising as there is not much info there but is that because of how I have tcpdump running (I'm running it with no extra options).
What I want to know, is my server safe like this?
If not, what can I do to protect it?
I am thinking of setting up a firewall rule that prevents my server from talking to anyone else on that /24 (Except the default gw) which will help the Layer3 stuff but I don't know if there's anything I can do about the layer2 stuff (As everyone is on the same VLAN).
R4z0r