ARP Poisoning Attack

12/14/2007 11:28:59 PM Detected ARP cache poisoning attack

Ok, I see tons of these in the Personal Firewall log, but that is all the information given. Well, that an "Protocol 0"

I know what the attack actually is, but there is no information about where it came from, if it was stopped, etc..

Anybody have a suggestion as to what I should do to get more information?

 

@ Capp


Ethereal log may be of help for analysis if it is real or false . Contact ESET

 

I just got 2 of them today for the first time.

 

Is this thing something that is getting through my router firewall? Should I be concerned about my wife's computer that has EAV instead of ESS?

 

In all cases , it is always better if your wife's computer has any software firewall (at least Windows Firewall) enabled

 

Duh!! Silly me. I didn't think about that. Windows Firewall is enabled. That should be good enough, Right?

 

Of course

Windows Firewall is weaker in other parts but when it comes to silent incoming protection , it really rocks.

 

Thanks HiTech. You're really cool.