L. V. Lammert wrote: > > PMFJI, but isn't the issue simpler than that? If he has a MiTM attack via > arp, doesn't that mean the attacker has access to the local subnet? >
Remote access to a machine on that subnet would do. It does not have to be physical. Probably a compromised Windows box that got the ball rolling (that's been my experience anyway). Once a machine on your net is infected, the cracker may as well be physically in the building. -- View this message in context: http://www.nabble.com/Where-is-%22Secure-by-default%22---tp22414975p22426601.html Sent from the openbsd user - misc mailing list archive at Nabble.com.
