nanog mailing list archives

Re: Interesting new spam technique - getting a lot more popular.

From: Chris Edwards <chris () eng gla ac uk>
Date: Wed, 14 Jun 2006 11:30:25 +0100 (BST)


On Wed, 14 Jun 2006, Christopher L. Morrow wrote:

| how about just mac security on switch ports? limit the number of mac's at
| each port to 1 or some number 'valid' ?

Hi,

Just to be clear, simple L2 mac security doesn't help here.  

This attack (arp spoofing on a shared subnet) does not involve more than 
one mac per switch port.  Nor are there any changes in switch port / mac 
associations.

You need to watch at the higher layers (arp, ip).

Cheers


--
Chris Edwards, Glasgow University Computing Service

Current thread:

RE: Interesting new spam technique - getting a lot more popular., (continued)
- - - RE: Interesting new spam technique - getting a lot more popular. Kristal, Jeremiah (Jun 15)
    - Re: Interesting new spam technique - getting a lot more popular. Danny McPherson (Jun 19)
    - Re: Interesting new spam technique - getting a lot more popular. chuck goolsbee (Jun 15)
    - Re: Interesting new spam technique - getting a lot more popular. Matt Buford (Jun 15)
    - Re: Interesting new spam technique - getting a lot more popular. chuck goolsbee (Jun 15)
    - Re: Interesting new spam technique - getting a lot more popular. Chris Adams (Jun 15)
    - RE: Interesting new spam technique - getting a lot more popular. andrew2 (Jun 15)
    - RE: Interesting new spam technique - getting a lot more popular. Lincoln Dale (Jun 14)
    - Re: Interesting new spam technique - getting a lot more popular. Florian Weimer (Jun 14)
    - Re: Interesting new spam technique - getting a lot more popular. Richard Z (Jun 15)
  - Re: Interesting new spam technique - getting a lot more popular. Chris Edwards (Jun 14)
  - Re: Interesting new spam technique - getting a lot more popular. Florian Weimer (Jun 14)
- RE: Interesting new spam technique - getting a lot more popular. John van Oppen (Jun 13)
  - Re: Interesting new spam technique - getting a lot more popular. Payam Chychi (Jun 13)
  - RE: Interesting new spam technique - getting a lot more popular. Edward B. DREGER (Jun 13)
- RE: Interesting new spam technique - getting a lot more popular. John van Oppen (Jun 14)
  - Re: Interesting new spam technique - getting a lot more popular. Warren Kumari (Jun 14)
    - Re: Interesting new spam technique - getting a lot more popular. Mark Smith (Jun 15)
- RE: Interesting new spam technique - getting a lot more popular. Church, Chuck (Jun 14)
  - Re: Interesting new spam technique - getting a lot more popular. Patrick W. Gilmore (Jun 14)
  - RE: Interesting new spam technique - getting a lot more popular. Christopher L. Morrow (Jun 14)

(Thread continues...)