spoofing MAC was Re: Visitor based netoworking

To: "Alex (LEX) Borges" <alex@sogrp.com>
Cc: debian-isp@lists.debian.org
Subject: spoofing MAC was Re: Visitor based netoworking
From: "Uwe A. P. Wuerdinger" <wuerdinger@x-tec.de>
Date: Thu, 12 Jun 2003 13:11:36 +0200
Message-id: <[🔎] 20030612111136.GB29854@hades.x-tec.de>
In-reply-to: <[🔎] 1055373657.23577.12.camel@lextibook>
References: <[🔎] 3EE63734.18886.67A9AC5@localhost> <[🔎] 3EE71857.32706.9EA0C2C@localhost> <[🔎] 200306111040.33639.kquinn@respond2.com> <[🔎] 1055373657.23577.12.camel@lextibook>

<quote who="Alex (LEX) Borges">

> On Wired networks its not so easy to cheat the mac address, this number
> is set uniquely for each card in the world (or so my teacher said).

It's very easy to set the MAC Address on a linux box:
ifconfig eth0 hw ether 01:00:00:00:00:01

> Anyhow, its probably not all that hard either, but i think its a good
> enough solution for controlled corporative environment where all you
> want is to apply policies per user and such.

The best thing would be to use x509 certs stored on USB tokens or smartcards

greets Uwe
-- 
X-Tec GmbH
Institute for Computer and Network Security
WWW : http://www.x-tec.de/
IPv6: http://www.ipv6.x-tec.de/

Reply to:

Follow-Ups:
- Re: spoofing MAC was Re: Visitor based netoworking
  - From: "Alex (LEX) Borges" <alex@sogrp.com>

References:
- Re: Visitor based netoworking
  - From: "Stefan Neufeind" <stefan@neufeind.net>
- Re: Visitor based netoworking
  - From: "Stefan Neufeind" <stefan@neufeind.net>
- Re: Visitor based netoworking
  - From: Keegan Quinn <kquinn@respond2.com>
- Re: Visitor based netoworking
  - From: "Alex (LEX) Borges" <alex@sogrp.com>

Prev by Date: Re: XEON SMP KERNEL 2.4.20 tree
Next by Date: {G} Exiscan ??
Previous by thread: Re: Visitor based netoworking
Next by thread: Re: spoofing MAC was Re: Visitor based netoworking
Index(es):
- Date
- Thread