NAME:

PERIOD:

Sniffing

In order to demonstrate sniffing, two machines will be communicating on the class network. Fire up your sniffer, and use the data you harvest to answer the following questions. All questions are worth 2 points.
  1. What are the ip addresses of the machines involved in the conversation you're sniffing?


  2. What are two login/password pairs which you saw?


  3. Login using one of the username/password pairs. What message greets you after you've successfully logged in?


  4. Which of the two IP addresses in #1 is the server, and which is the client?


  5. Describe how to isolate a ftp single session, using Ethereal, on a busy network. There are several correct answers.


  6. What are two legitimate uses of a sniffer?


  7. If you have an AIM or yahoo messenger account, start your sniffer, then login using the program "gaim". Watch your own session traffic. Is your password obscured in any way?


  8. What technique can enable sniffing on a switch?


  9. How many bytes are allocated for the destination port in a TCP packet? How many for the source port?


  10. Is there a technical reason that a server cannot listen on port 72142?