From mboxrd@z Thu Jan  1 00:00:00 1970
From: Adi Nugroho <Adi@iNterNUX.co.id>
Date: Mon, 11 Feb 2002 02:24:04 +0000
Subject: Re: Re[2]: [LARTC] Fake hardware address
Message-Id: <marc-lartc-101339399021320@msgid-missing>
List-Id: <lartc.vger.kernel.org>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
To: lartc@vger.kernel.org

On Sunday 10 February 2002 10:42, Will Lotto wrote:
> To take a mac address, one needs to wait for a PC to go offline (or
> take a PC offline), then steal the MAC.  ... Stealing the MAC is very
> easy, intel network cards let you SET the MAC in windows (under
> advanced settings) ... in linux, there are programs that can do it,
> which work with most cards.

Yes.... and for Linux, the software is..... IFCONFIG :-(
Just type "ifconfig eth0 hw ether 11:22:33:44:55:66", and it's done.
Too simple :-(

>
> As for protection, I don't believe there is a simple way to
> protect against such an attack ... Encryption? :)

I've done it.
I'm using WEP.
But I'm not sure if WEP are secure enough :-(
I heard, it is possible to break WEP.
So, I block connection using MAC address also.
But now..... it's again very easy to break :-(

Ok, thank you for all reply....
I will learn more about autentification, L2TP and IPSec.

Regards,
Adi Nugroho
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://ds9a.nl/lartc/