Login form - packet sniffer

Posted on 2006-03-29
Last Modified: 2013-12-04
Does my web site login have to be on a secure server or otherwise be easily vulnerable to hackers? I noticed some big name web sites logins are not on a secure server, so does the mean they are risking packet sniffers hackers?

How much risk is there not having your login on a secure server?

Question by:nightzeus
    LVL 15

    Accepted Solution

    Most of that would depend on where the server is housed. Most servers are hooked to switches now rather then hubs, so the sniff could only happen on that particular link or they'd have to sniff the traffic into the main switch. If the server is located in a trustworthy datacenter, they won't have employees trying to sniff your server traffic. The important thing is to lock down your server so someone doesn't run the sniffer on your own box. You won't have much control over the client side being sniffed, but you can secure your own side (server).
    LVL 18

    Expert Comment

    Depends on where you're sniffing from. You'd have to sniff somewhere between the user and the location of the server itself. SSL is intended to make that hard for someone trying to be somewhere in the middle by encrypting the data. But here's the major question: what is the value of the data being transmitted? You don't want to spend too much more than what it's worth protecting it.

    Featured Post

    IT, Stop Being Called Into Every Meeting

    Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

    Join & Write a Comment

    Suggested Solutions

    Recently, a new law in my state forced us to get a top-to-bottom analysis of all of our contract client's networks. While we have documentation, it was spotty at best for some - and in any event it needed to be checked against reality. That was m…
    No security measures warrant 100% as a "silver bullet". The truth is we also cannot assume anything but a defensive and vigilance posture. Adopt no trust by default and reveal in assumption. Only assume anonymity or invisibility in the reverse. Safe…
    Excel styles will make formatting consistent and let you apply and change formatting faster. In this tutorial, you'll learn how to use Excel's built-in styles, how to modify styles, and how to create your own. You'll also learn how to use your custo…
    Access reports are powerful and flexible. Learn how to create a query and then a grouped report using the wizard. Modify the report design after the wizard is done to make it look better. There will be another video to explain how to put the final p…

    728 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    19 Experts available now in Live!

    Get 1:1 Help Now