Vulnerability Development mailing list archives
Re: DHCP and Security
From: brycewalter () HOTMAIL COM (Bryce Walter)
Date: Fri, 4 Feb 2000 13:37:10 GMT
Assuming your LAN is using WINS, its pretty trivial to check the WINS mappings to find the NetBios name thats using a specific IP. MS's WINS server will often have the user name mapped to the IP in addition to the computer netbios name. Don't know about non-MS NetBios name servers though. Bryce Walter
Need a policy read folks: The system I "manage" has 3200 users at various locations throughout the world, managed by a central NOC. Our firewall permissions (protocol and port) are highly restrictive and report any unauthorized actions (ftp, pings, finger,.....). The NOC gets a report from the firewall indicating which IP was the "offender". If I the LAN clients are configured with static IP's, it's easy to attribute the offending action with a LAN client, but with DHCP (which is the method of choice for our sys admin types), it has proven difficult to "map" an IP address back to a specific user... lease times expire, inadequate event logging..etc. How can I configure DHCP to balance the need for security with the wishes of the sys admin folks? Any Ideas? Rob Nitzenberger thenitz () email com
______________________________________________________ Get Your Private, Free Email at http://www.hotmail.com
Current thread:
- Re: DHCP and Security Bryce Walter (Feb 04)
- <Possible follow-ups>
- Re: DHCP and Security r4sc4l () HUSHMAIL COM (Feb 04)