"Man in the middle" can change the value data sent in a Man-in-the-middle attack
If I send from A to B an information, the "Man i开发者_Go百科n the middle" can change the value data sent or he/she can only sniff it?
the answer depends upon the technologies involved.
1 if you do nothing to prevent the mitm attack, the man in the middle can both sniff and change your data. if you look up arp spoofing, you'll see a very simple way to play mitm - and you'll find tool sthat automate the work.
2 you can use crypto protocols like TLS, designed to prevent both sniffing and changingof data. if, however, you use a broken implementation, broken protocol, or weak algorithms, you're back to #1
3 you can use crypto that will provide only sniffing or changing data. for example, digital signatures effectively garuantee that the data hasn't changed, but the signature does nothing to protect the data from being read. similarly, a one time pad will make it impossible to read your data, but won't prevent blind tampering (there was an old problem with automatic teller machines, where it was possible to flip random bits to change the value of a deposit, hoping to make it larger tthan what you really deposited)
精彩评论