RE: MAC level authentication or filtering

["Roy Sgan-Cohen" <Roys () xor-t com>]

There still is a management problem of simply managing all these MAC
filtering on all the switches in the organization (in case that this is
a big organization, of course). 

-----Original Message-----
From: Kurt [mailto:kurtbuff () spro net] 
Sent: Friday, October 08, 2004 1:37 AM
To: dnardoni () firstresponseconsulting com;
security-basics () securityfocus com
Subject: RE: MAC level authentication or filtering

Depending on your switches, you could use MAC address filtering there,
by specifiying that only certain addresses can use each port.

| -----Original Message-----
| From: David Nardoni [mailto:dnardoni () firstresponseconsulting com]
| Sent: Thursday, October 07, 2004 09:54
| To: security-basics () securityfocus com
| Subject: MAC level authentication or filtering
|
|
| I need a solution that will allow me to prevent a user from coming in 
| to my office and plugging in a laptop and gaining access to the 
| network.
|
| I have users that are currently using thin clients to connect to the 
| main server to do all their processing.  If a legitimate user turns 
| bad and decides to bring in a system (laptop) from home and connect it

| to the network and proceed to use their proper username and password 
| to gather information from terminal services, I want to be able to 
| recognize that they have plugged in an unauthorized system and keep 
| them from gaining access to the network.
|
| I welcome all ideas no matter what vendor solution or no matter how 
| simple or complex.  If you need more info on the situation let me 
| know.
|
|
| Dave Nardoni CISSP
| First Response Consulting Services, Inc.
| dnardoni () firstresponseconsulting com
|
|