[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

spoofing MAC was Re: Visitor based netoworking

<quote who="Alex (LEX) Borges">

> On Wired networks its not so easy to cheat the mac address, this number
> is set uniquely for each card in the world (or so my teacher said).

It's very easy to set the MAC Address on a linux box:
ifconfig eth0 hw ether 01:00:00:00:00:01

> Anyhow, its probably not all that hard either, but i think its a good
> enough solution for controlled corporative environment where all you
> want is to apply policies per user and such.

The best thing would be to use x509 certs stored on USB tokens or smartcards

greets Uwe
X-Tec GmbH
Institute for Computer and Network Security
WWW : http://www.x-tec.de/
IPv6: http://www.ipv6.x-tec.de/

Reply to: