From owner-freebsd-security Wed Sep 8 1:30:59 1999 Delivered-To: freebsd-security@freebsd.org Received: from guppy.pond.net (guppy.pond.net [205.240.25.2]) by hub.freebsd.org (Postfix) with ESMTP id 5646415602 for ; Wed, 8 Sep 1999 01:30:55 -0700 (PDT) (envelope-from dmp@aracnet.com) Received: from aracnet.com (snapuser2-89.pacificcrest.net [216.36.34.89]) by guppy.pond.net (8.9.3/8.9.3) with ESMTP id BAA13343; Wed, 8 Sep 1999 01:26:54 -0700 (PDT) From: dmp@aracnet.com Message-ID: <37D61E69.58B806DF@aracnet.com> Date: Wed, 08 Sep 1999 01:29:29 -0700 X-Mailer: Mozilla 4.6 [en] (Win98; U) X-Accept-Language: en MIME-Version: 1.0 To: The Mad Scientist Cc: ks@itp.ac.ru, freebsd-security@FreeBSD.ORG Subject: Re: Layer 2 ethernet encryption? References: <4.1.19990907190442.0096ada0@mail.thegrid.net> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org The Mad Scientist wrote: > I do not claim to understand driver writing, but what about ripping out > the code that puts the NIC into promiscous mode? I'm not a software hacker, so I couldn't tell you if that would work, but disabling that part of the driver might not be such a good idea. > You would have to modify > the code that allows the driver to change its MAC address, probably. But > if you have good network monitors, you should be able to detect a machine > that is pretending to be someone else pretty quickly. It's not encryption, > but if you're blind, you can't read the written word. It doesn't solve > your EM problems either. If a NIC changed it's MAC, it would loose connectivity. > 'Course, I guess any user with half a brain could go out and get the > original driver and put it in place -- this being an open source solution. > So, I guess it's not such a good idea after all. Integrity checks withstanding, such a modification would prevent the machine from connecting to the network. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message