Re: Blocking Access to Non-domain computers

[Ansgar -59cobalt- Wiechers <bugtraq () planetcobalt net>]

On 2004-08-31 Thomas TS wrote:
> On Sun, 2004-08-29 at 19:51 +0100, Barrie Dempster wrote:
> > On Wed, 2004-08-25 at 21:46, Steven A. Fletcher wrote:
> > > Certainly!  There are a number of products that will do such a
> > > thing. Microsoft has had such things for a while now, even going
> > > back to the NT 4 days.  On NT, they had MS Proxy which has now
> > > become Microsoft Internet Security and Acceleration (ISA) Server.
> > > There are other products, too, but that is one example.
> >
> > Your only option for restricting DHCP access is to use MAC address
> > filtering (which is trival to bypass) although if you combine this
> > with IPSEC, 
>
> So, now I am "just curious" about how to lie a MAC to get thought a
> MAC access list barrier...
>
> Could you give a proof-of-concept description on this matter ?

man ifconfig

Regards
Ansgar Wiechers
-- 
"Those who would give up liberty for a little temporary safety
deserve neither liberty nor safety, and will lose both."
--Benjamin Franklin

---------------------------------------------------------------------------
Computer Forensics Training at the InfoSec Institute. All of our class sizes
are guaranteed to be 12 students or less to facilitate one-on-one
interaction with one of our expert instructors. Gain the in-demand skills of
a certified computer examiner, learn to recover trace data left behind by
fraud, theft, and cybercrime perpetrators. Discover the source of computer
crime and abuse so that it never happens again.

http://www.infosecinstitute.com/courses/computer_forensics_training.html
----------------------------------------------------------------------------