Vulnerability Development mailing list archives

Re: spoofing the ethernet address

From: mikael.olsson () ENTERNET SE (Mikael Olsson)
Date: Wed, 1 Mar 2000 10:21:55 +0100


"Bobby, Paul" wrote:


The ethernet address (MAC) is the address of the sending machine.

Is it possible to spoof this address also? Would someone have to write a
custom ethernet driver?


It is possible to do, and  most any packet sniffer capable of sending
packets of its own can do this.
There aren't really any APIs to do it, so you'll most likely have to add
your own hook between the IP layer and the media layer (differently done
in different types of OS:es, but basically the same idea), but it'll
still be NIC independent, which is good.


--
Mikael Olsson, EnterNet Sweden AB, Box 393, S-891 28 Ă–RNSKĂ–LDSVIK
Phone: +46 (0)660 105 50           Fax: +46 (0)660 122 50
Mobile: +46 (0)70 248 00 33
WWW: http://www.enternet.se        E-mail: mikael.olsson () enternet se

Current thread:

Re: spoofing the ethernet address Sen_Ml Sen_Ml (Mar 01)
- Re: spoofing the ethernet address yeti (Mar 02)
- <Possible follow-ups>
- Re: spoofing the ethernet address Mikael Olsson (Mar 01)
- Re: spoofing the ethernet address Carl-Johan Bostorp (Mar 01)
- Re: spoofing the ethernet address Simple Nomad (Mar 01)
- Re: spoofing the ethernet address Vitek, Ian (Mar 01)
- Re: spoofing the ethernet address Granquist, Lamont (Mar 01)
- Re: spoofing the ethernet address Mudge (Mar 01)
  - Re: spoofing the ethernet address Dug Song (Mar 02)
- Re: spoofing the ethernet address Ben Grubin (Mar 01)
- Re: spoofing the ethernet address -DAL- (Mar 01)
- Re: spoofing the ethernet address Iván Arce (Mar 01)
- Re: spoofing the ethernet address hypoclear - lUSt - (Linux Users Strike Today) (Mar 01)

(Thread continues...)