Snarfing
rewrite it to present the subject from an encyclopedic point of view. (January 2024) |
 | This article may be confusing or unclear to readers. (May 2011) |
Snarf is a term used by computer programmers and the
FTP protocols without user interaction, and to a method of achieving cache coherence in a multiprocessing
computer architecture through observation of writes to cached data.
Example
An example of a snarf is the
IP number
, regardless of their DNS settings, so any website they attempt to visit will bring up a snarf "splash page", requesting a username and password. The username and password entered by unsuspecting users will be mailed to root@localhost. The reason this works is:
- Legitimate access points can be impersonated and/or drowned out by rogue access points, and
- Users without a means to validate the authenticity of access points will nevertheless give up their hotspot credentials when asked for them
See also
References
- ^ "snarf". catb.org. Retrieved 2020-11-08.
- ^ Potter, Bruce G. (1996-10-16). "'Airsnarf' - A rogue AP setup utility". The Shmoo Group. p. 1. Retrieved 2012-11-03.
Airsnarf is a simple rogue wireless access point setup utility designed to demonstrate how a rogue AP can steal usernames and passwords from public wireless hotspots. Airsnarf was developed and released to demonstrate an inherent vulnerability of public 802.11b hotspots--snarfing usernames and passwords by confusing users with DNS and HTTP redirects from a competing AP.