[MLB-WIRELESS] another stupid q, about dhcp
Ben Anderson
a_neb at optushome.com.au
Thu Apr 4 00:41:14 EST 2002
That's only advantageous at the data-link layer -- them being mac addresses
and all... Anything that goes through the default gateway for that network
will have a valid mac on the packet (the gateways internal network cards
mac). Data link security doesn't equal security as there's plenty of other
holes to poke stuff in...
And as you point out, it's pretty pointless with wireless...
Ben.
> Rick wrote:
> > so then it is possible to stop people "hacking" into networks
>
> With some network gear (switches and routers), you can limit certain MAC
> addresses to certain ports. For example:
> Socket 1: MAC=00:0C:B0:F3:EE:13 ;Reception PC
> Socket 2: MAC=00:0A:12:4C:2F:22 ;Reception VOIP
> Socket 3: Disabled ;Lobby spare
> Socket 4: MAC=01:D0:CC:CD:32:01 ;Vending machine
> etc...
> This means to hack the network, you need to have the correct MAC address
> plugged into the correct wall point, or no data will traverse the wire.
> This is one of the systems preferred by fascist network administrators.
Of
> course, this can not possibly apply to wireless, as everyone is
effectively
> on the same "socket".
>
> Cheers,
> Tyson.
> ____________________________________________
>
> Tyson Clugg
> IT Services
> CSIRO - Molecular Science, Clayton
> phone: (03) 9545 2090
> email: tyson.clugg at csiro.au
> ____________________________________________
>
> To unsubscribe: send mail to majordomo at wireless.org.au
> with "unsubscribe melbwireless" in the body of the message
>
To unsubscribe: send mail to majordomo at wireless.org.au
with "unsubscribe melbwireless" in the body of the message
More information about the Melbwireless
mailing list