The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Packet Sniffing

Discussion in 'Security' started by keat63, Jun 9, 2016.

  1. keat63

    keat63 Well-Known Member

    Joined:
    Nov 20, 2014
    Messages:
    765
    Likes Received:
    20
    Trophy Points:
    18
    cPanel Access Level:
    Root Administrator
    I'd just like to run something past any security experts if possible.

    I have a dedicated server hosted in a data centre somewhere in the UK.
    No doubt there are hundreds of these things, as well as VPS's, and hosted plans in the same building.

    What are the chances of hackers packet sniffing the whole data centre from within. Maybe an application sitting on another dedicated server.
    Is this possible ?
     
  2. Dave Smith

    Dave Smith Member

    Joined:
    Mar 20, 2016
    Messages:
    13
    Likes Received:
    3
    Trophy Points:
    3
    Location:
    Lisbon
    cPanel Access Level:
    Root Administrator
    There is always a risk no matter where you select to host your box/boxes. Everything is a potential threat and should be treated as such. In the past I have contacted many providers to inform them of gaping holes in security. Anything is possible.
     
  3. quizknows

    quizknows Well-Known Member

    Joined:
    Oct 20, 2009
    Messages:
    940
    Likes Received:
    55
    Trophy Points:
    28
    cPanel Access Level:
    DataCenter Provider
    It's unlikely another customers dedicated server could sniff anything useful. However, anything going through the hosting companies routers/switches etc they (the hosting company) could look at. This is why SSL, SSH, etc are quite important. Intercepting encrypted data is pretty useless unless you're a sophisticated hacker. On the other hand, normal HTTP / FTP you can get quite useful data from. Basically, if it's sensitive data, use HTTPS, SSH, etc... some level of encryption to protect from other parties.

    If you are curious, fire up wireshark or something on your own network and experiment with what you can see. You will find that HTTP is quite easy to decipher, while HTTPS captures are basically useless.
     
    cPanelMichael likes this.
Loading...

Share This Page