堆栈内存溢出
  简体   繁体   English

高校如何防止ARP欺骗攻击?

[英]How to prevent ARP spoofing attack in college?

 原文  2015-07-27 17:26:26       networking/ wifi/ arp/ spoofing

问题描述

I stay in a college hostel and in our campus wifi network someone is ARP spoofing. 我住在一所大学旅馆里,在我们的校园无线网络中有人在欺骗ARP。 What can be possible improvement done to existing network architecture to prevent someone doing such types of attack? 可以对现有网络体系结构进行哪些改进以防止某人进行此类攻击?

1 个解决方案

解决方案1
 0 已采纳  2015-07-27 17:59:00

To help prevent ARP poisoning enterprise switches provide enhanced security firmware eg - http://www.cisco.com/c/en/us/products/collateral/switches/catalyst-6500-series-switches/white_paper_c11_603839.html 为了帮助防止ARP中毒,企业交换机提供了增强的安全固件,例如-http: //www.cisco.com/c/en/us/products/collat​​eral/switches/catalyst-6500-series-switches/white_paper_c11_603839.html

Dynamic ARP Inspection (DAI) is a security feature that is available on Cisco Catalyst 6500 Series switches running Cisco IOS Software or Cisco Catalyst OS. 动态ARP检查(DAI)是运行Cisco IOS软件或Cisco Catalyst OS的Cisco Catalyst 6500系列交换机上提供的安全功能。 Dynamic ARP inspection helps prevent ARP poisoning and other ARP-based attacks by intercepting all ARP (Address Resolution Protocol) requests and responses, and by verifying their authenticity before updating the switch's local ARP cache or forwarding the packets to the intended destinations. 动态ARP检查可通过拦截所有ARP(地址解析协议)请求和响应,并在更新交换机的本地ARP缓存或将数据包转发到预期目标之前验证其真实性,来帮助防止ARP中毒和其他基于ARP的攻击。 Note that on Cisco Catalyst 6500 Series switches, Dynamic ARP requires Supervisor 2, Supervisor 32, or Supervisor 720. As previously stated, a Supervisor 720-3B was used in these tests.... 请注意,在Cisco Catalyst 6500系列交换机上,动态ARP需要Supervisor 2,Supervisor 32或Supervisor720。如前所述,在这些测试中使用了Supervisor 720-3B。

**** A possible remedy for end users might be **** ****最终用户可能的补救办法是****

As an end user you can somewhat defend against this attack by preventing your machine from accepting ARP requests from other machines on your local network. 作为最终用户,您可以通过阻止您的计算机接受来自本地网络上其他计算机的ARP请求来在某种程度上防御此攻击。 The blog below has some very useful tips to defend your own machine. 下面的博客提供了一些非常有用的技巧来保护自己的计算机。 I cant vouch for using netcut to prevent ARP poisoning but ESET is a popular commercial anti-virus so i would imagine it's a safe bet. 我不能保证使用netcut来防止ARP中毒,但是ESET是一种流行的商业反病毒软件,因此我认为这是一个安全的选择。

https://www.raymond.cc/blog/protect-your-computer-against-arp-poison-attack-netcut/ https://www.raymond.cc/blog/protect-your-computer-against-arp-poison-attack-netcut/

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 ARP 缓存中毒/欺骗是否已修复? - Is ARP cache poisoning/spoofing fixed? 使用traceroute检测ARP欺骗 - Detect ARP Spoofing using traceroute 如何防止游戏客户端版本欺骗? - How to prevent game-client version spoofing? 在Linux上的C中进行arp欺骗时,目标计算机的arp缓存未更新 - target computer arp cache not updating when arp spoofing in c on linux ARP刷新的频率 - How often the arp refresh ARP如何被允许? - How ARP is allowed? 您可以使用ARP中毒(欺骗)来应用模拟的外部效果吗? - Can you use ARP-Poisoning (spoofing) to apply simulated external effects? 使用多线程代码防止 DOS 攻击 - Prevent DOS attack with multithreaded code 如何缓解BGP劫持攻击? - How to mitigate BGP hijacking attack? 如何在 mininet Python 脚本中运行 ARP? - How could I run ARP in mininet Python script?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM