My oh my, I am glad there are smarter people on IETF
I hate having to post about this but I hate people who think they are security experts and post some wild Security Advisory. I received an email from bugtraq today, read it here, that states that Adelphia Powerlink service vulnerable to man in the middle attacks by cable modem users. The person does not go on to talk about layer 2 switching or arp cache but goes to say that it's Adelphia networks that are vulnerable. I am on an Adelphia network and I love ARP poisoning but I have to say that it is not possible on my network because I have been playing with Adelphia for years and they have noticed the activity and fixed the holes. After sending 511 ARP requests, I get 2 returns, me and the next hop. Being ticked off by this false post, I went to the site that this user tagged his email with at the top, http://www.invisiblenet.com/. I have never been so disappointed with a site before, they have two things on the front page "Invisible IRC Project" and "Support invisibleNET". C'mon, no security papers, no patches, no releases? Just an IRC project and some commerce. Whats next? A booth at DefCon telling everyone to buy your shit because your security group is so great because you know someone who found Adelphia has a layer 2 switching enviorment that let ARP Cache. </RANT>