Re: large campus network ... sugestions
Jonas Andradas wrote:
Regarding horatio, which seems interesting, I wonder how it does the
filtering. If it just creates iptables rules based on IP, if users
can sniff traffic (i.e. unencrypted wireless), they could change their
mac address and IP and try to trick Horatio into thinking they are a
"valid" user... Or maybe I am wrong.
After login (using SSL) users are required to keep the page open. The
webpage refresh itself after 300 seconds. A "hacker" will be
disconnected after this interval.
Adrian Minta MA3173-RIPE, MA314-ROTLD, www.minta.ro