Jonas Andradas wrote:
Hello, Regarding horatio, which seems interesting, I wonder how it does the filtering. If it just creates iptables rules based on IP, if users can sniff traffic (i.e. unencrypted wireless), they could change their mac address and IP and try to trick Horatio into thinking they are a "valid" user... Or maybe I am wrong. Regards,
After login (using SSL) users are required to keep the page open. The webpage refresh itself after 300 seconds. A "hacker" will be disconnected after this interval. -- Best regards, Adrian Minta MA3173-RIPE, MA314-ROTLD, www.minta.ro