Security Basics mailing list archives
RE: MAC level authentication or filtering
From: "Mike" <mike () superiorholidayadventures ca>
Date: Fri, 8 Oct 2004 08:24:47 -0400
You could use a bridging linux firewall to only allow traffic to and from specific macs. Be aware that this has overhead, how much depends on the amount of workstations you have. Also, crafty users can spoof their mac's. You could also use a non-bridging linux firewall to allow traffic only from specific mac *and* ip combinations. This is not completely foolproof, but it should do the job. Mike Fetherston
-----Original Message----- From: David Nardoni [mailto:dnardoni () firstresponseconsulting com] Sent: Thursday, October 07, 2004 12:54 PM To: security-basics () securityfocus com Subject: MAC level authentication or filtering I need a solution that will allow me to prevent a user from coming in
to
my office and plugging in a laptop and gaining access to the network. I have users that are currently using thin clients to connect to the
main
server to do all their processing. If a legitimate user turns bad and decides to bring in a system (laptop) from home and connect it to the network and proceed to use their proper username and password to
gather
information from terminal services, I want to be able to recognize
that
they have plugged in an unauthorized system and keep them from gaining
access
to the network. I welcome all ideas no matter what vendor solution or no matter how
simple
or complex. If you need more info on the situation let me know. Dave Nardoni CISSP First Response Consulting Services, Inc. dnardoni () firstresponseconsulting com
Current thread:
- Re: MAC level authentication or filtering, (continued)
- Re: MAC level authentication or filtering Jon Lawhead (Oct 08)
- Re: MAC level authentication or filtering Ajay (Oct 12)
- Re: MAC level authentication or filtering Jon Lawhead (Oct 08)
- RE: MAC level authentication or filtering Kurt (Oct 08)
- RE: MAC level authentication or filtering Jay Archibald (Oct 08)
- Re: MAC level authentication or filtering GuidoZ (Oct 08)
- Re: MAC level authentication or filtering Josh Mills (Oct 08)
- Re: MAC level authentication or filtering Jerry Eblin (Oct 08)
- RE: MAC level authentication or filtering Paris E. Stone (Oct 08)
- Fw: MAC level authentication or filtering GUs (Oct 08)
- RE: MAC level authentication or filtering Roy Sgan-Cohen (Oct 08)
- RE: MAC level authentication or filtering Mike (Oct 08)
- FW: MAC level authentication or filtering David Nardoni (Oct 08)
- RE: MAC level authentication or filtering Roy Sgan-Cohen (Oct 08)
- RE: MAC level authentication or filtering Jay Archibald (Oct 12)