Re: MAC Spoofing Prevention in Wireless

[Erik <security () vanwesten net>]

Op 8-7-2011 21:30, bjesmer () platformsolutions com schreef:
> The concept is fairly straight forward. The AP looks to see if there are 2 MACs of the same on the network and 
> disallows the second one on the network. Not having worked with the Aruba yet, i would try a deauth attack against the 
> mac you are going to spoof and then try to get on. If you can deauth that client and get on before it, you might be 
> able to get in.
Your answer indicates a lack of knowledge. A layer 2 MAC address is the 
only differentiating thing on a wireless network (with the exception of 
certificates, which, no doubt, are being used in the Aruba network) for 
different stations. You cannot tell the difference between MAC and 
MACclone, hence you cannot if there is more than one MAC address active 
and thus not 'disallow the second one'.

------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------