Firewall Wizards mailing list archives

Re: Link level security with static arp tables

From: Magosányi Árpád <mag () bunuel tii matav hu>
Date: Tue, 14 Oct 2003 17:54:30 +0000

A levelezőm azt hiszi, hogy Luke Butcher a következőeket írta:


You could look into 802.1x MAC Authentication type solutions. Normally
these however are implemented at a switch level. 

Generally EAP/LEAP/PEAP type stuff is normally associated with wireless
but the concepts apply to any publicly available connection mechanism.
It's used to secure the first point of entry into the network.


...if you do not take security very seriously.
The problem with leap is that it is known broken
and its support is deprecating.

Of course still better than just dumbly believing in a claimed
identity (MAC address).

If real authentication, integrity and confidentality is needed,
I would do IPSEC. Any other (or same) ideas?

-- 
GNU GPL: csak tiszta forrásból
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Link level security with static arp tables Debian User (Oct 13)
- Re: Link level security with static arp tables Luke Butcher (Oct 14)
  - Re: Link level security with static arp tables Magosányi Árpád (Oct 15)
    - Re: Link level security with static arp tables Paul Robertson (Oct 15)
    - RE: Link level security with static arp tables Ben Nagy (Oct 15)
    - RE: Link level security with static arp tables R. DuFresne (Oct 15)
    - Re: Link level security with static arp tables Bennett Todd (Oct 15)
- Re: Link level security with static arp tables Martin A. Brown (Oct 14)
- RE: Link level security with static arp tables Ben Nagy (Oct 14)
- <Possible follow-ups>
- RE: Link level security with static arp tables Sloane, David (Oct 14)