RE: MAC address

["Jorge Coll" <jcoll () commonx com>]

No.  Not unless you're on the same local subnet.  MAC addresses are a
part of Layer 2 (Data Link).  Once you are past the first router, L2
information is dropped.  Layer 3 (IP) is what is used for routing
packets around.

- jc

-----Original Message-----
From: n30 [mailto:n30_lists () hotmail com] 
Sent: Friday, October 17, 2003 10:49 AM
To: security-basics () securityfocus com
Subject: MAC address

Guys,

Lets say i am a web programmer and i want to use strong sessions.

Is it possible for the web server to determine the MAC of clients
browsing
the application.

If yes, I can programatically use this MAC address in sessions to
prevent
lot of session related attacks.

For right now, say I can implement the web application in any language i
want.

Thanks
-n

------------------------------------------------------------------------
---
FREE Whitepaper: Better Management for Network Security

Looking for a better way to manage your IP security?
Learn how Solsoft can help you:
- Ensure robust IP security through policy-based management
- Make firewall, VPN, and NAT rules interoperable across heterogeneous
networks
- Quickly respond to network events from a central console

Download our FREE whitepaper at:
http://www.securityfocus.com/sponsor/Solsoft_security-basics_031015
------------------------------------------------------------------------
----


---------------------------------------------------------------------------
FREE Whitepaper: Better Management for Network Security

Looking for a better way to manage your IP security?
Learn how Solsoft can help you:
- Ensure robust IP security through policy-based management
- Make firewall, VPN, and NAT rules interoperable across heterogeneous
networks
- Quickly respond to network events from a central console

Download our FREE whitepaper at:
http://www.securityfocus.com/sponsor/Solsoft_security-basics_031015
----------------------------------------------------------------------------