Security Basics mailing list archives

Re: MAC Spoofing Prevention in Wireless

From: Enis Sahin <enis.c.sahin () gmail com>
Date: Tue, 5 Jul 2011 14:05:45 +0300

Charles,

Thanks for your reply. I'm aware and have been observing that Aruba is
pretty solid. I just wanted to understand the way it worked against
these attacks.


On 5 July 2011 07:44, Charles Lacroix <charles.lacroix () gmail com> wrote:


Aruba is safe.
You need to hack into a GRE tunnel from you to the AP
then you need to authenticate 802.1x just to get an ip addr

unless you have access to the controler you can say Aruba wifi is safe.


On Thu, Jun 30, 2011 at 12:13 AM, Suresh Kumar Prajapati <er.sureshprajapati () gmail com> wrote:


On Wed, Jun 29, 2011 at 12:44 PM, Enis Sahin <enis.c.sahin () gmail com> wrote:

Hello List,

I have recently been involved in a security test of a wireless
environment using Aruba controllers and a captive portal. As an
obvious attack vector I tried spoofing the MAC (and IP) addresses of
valid authenticated users but it didn't grant me access. I've been
told that MAC spoofing prevention is one of the feature of the Aruba
wireless controllers.

I've Googled a bit but haven't come across a good explanation. How
does MAC spoofing detection work on wireless networks? What
information does a controller utilize on lower layers to detect that a
packet is coming from a spoofed MAC?

Can you please share the resource address
thanx

Thanks.

--
http://www.enissahin.com | http://twitter.com/enis_sahin

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, 
how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, 
purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for 
set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital 
certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------




--
Best Regards,
Suresh Kumar Prajapati
Linux Security Admin
E-mail: er.sureshprajapati () gmail com
----------------------------------------------------------------------------------------
Pencils could be made with erasers at both ends, but what would be the point?

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, 
how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, 
purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for 
set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital 
certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------




--
http://www.enissahin.com | http://twitter.com/enis_sahin

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------

Current thread:

MAC Spoofing Prevention in Wireless Enis Sahin (Jul 04)
- Message not available
  - Message not available
    - Re: MAC Spoofing Prevention in Wireless Enis Sahin (Jul 05)
- <Possible follow-ups>
- Re: Re: MAC Spoofing Prevention in Wireless bjesmer (Jul 08)
  - Re: MAC Spoofing Prevention in Wireless Erik (Jul 11)
    - Re: MAC Spoofing Prevention in Wireless Jeffrey Walton (Jul 12)
    - Re: MAC Spoofing Prevention in Wireless Enis Sahin (Jul 13)
  - RE: Re: MAC Spoofing Prevention in Wireless David Gillett (Jul 13)
- RE: Re: MAC Spoofing Prevention in Wireless David Gillett (Jul 14)
  - Re: Re: MAC Spoofing Prevention in Wireless Jamie Ivanov (Jul 15)