nanog mailing list archives

Re: Static IP addresses for Dial-up

From: Paul Ferguson <pferguso () cisco com>
Date: Mon, 29 Jan 1996 13:06:56 -0500

At 05:18 PM 1/29/96 +0100, Piet Beertema wrote:

   I can certainly understand the need for access control & security,
   but with the use of a smart-card one-time password system, this is
   a moot point.

Huh? How are you going to stop a system from "illegally"
(in the sense of the provider, contracts, or whatever)
acting as -say- www, ftp, or whatever server with such
a one-time password system? You'll need access control
*based on IP addresses* to reach that goal!


No, no, no. The concept of access-filtering based on source address is
easily spoofed, where the OTP password systems that I'm referring to 
are based on a concept of authentication-based access, which is much more 
reliable than a [possibly fake] source address.

This is not a new concept.

- paul

Current thread:

Re: Static IP addresses for Dial-up, (continued)
- Re: Static IP addresses for Dial-up Christian Huitema (Jan 29)
- Re: Static IP addresses for Dial-up Paul Ferguson (Jan 29)
  - Re: Static IP addresses for Dial-up Robert Elz (Jan 29)
  - Re: Static IP addresses for Dial-up Piet Beertema (Jan 29)
    - Re: Static IP addresses for Dial-up bmanning (Jan 30)
- Re: Static IP addresses for Dial-up Lixia Zhang (Jan 29)
- Re: Static IP addresses for Dial-up Matt Crawford (Jan 29)
- Re: Static IP addresses for Dial-up Sanjay Dani (Jan 29)
- Re: Static IP addresses for Dial-up Paul Ferguson (Jan 29)
  - Re: Static IP addresses for Dial-up Robert Elz (Jan 30)
- Re: Static IP addresses for Dial-up Paul Ferguson (Jan 29)
- Re: Static IP addresses for Dial-up Matthew Kaufman (Jan 29)
- Re: Static IP addresses for Dial-up Robert A. Rosenberg (Jan 29)
- Re: Static IP addresses for Dial-up Paul Ferguson (Jan 30)
  - Re: Static IP addresses for Dial-up Robert Elz (Jan 30)
- Re: Static IP addresses for Dial-up marthag (Jan 30)