Date: Fri, 2 Jul 1999 10:01:37 -0500 (CDT) From: James Wyatt <jwyatt@RWSystems.net> To: Josef Karthauser <joe@pavilion.net> Cc: Dag-Erling Smorgrav <des@flood.ping.uio.no>, Snob Art Genre <ben@narcissus.net>, Bill Fink <bill@billfink.com>, freebsd-security@FreeBSD.ORG Subject: Re: your mail Message-ID: <Pine.BSF.4.05.9907020954510.21228-100000@kasie.rwsystems.net> In-Reply-To: <19990702104239.X69050@pavilion.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 2 Jul 1999, Josef Karthauser wrote: [ ... ] > He's on a local area network that I'm part of. I provide routed access to > the internet, but he's allowed access to the network to connect to other > users (this is at home, not at work - he rent's a room from me.) The problem > is that he's running Internet Explorer 5 in stupid "go on line for no reason > at all" mode and until he's either un-installed it, or fixed the problem > I've told him that I'm shutting down his internet access. That said he's > been a naughty boy and changed his IP address a couple of times to other > people's. He thinks that I don't know, but of course I've got changing > ARP addresses. What I'd like to do now is ignore his MAC address on the > server instead to get around this. (I could disconnect him from the network > but that's harder to police.) Ah, much better detail. <BOFH> He can be your toy, then! </BOFH> Nothing quite like flood-pinging a WinBox on a local segment! Could you proxy&cache the requests to reduce actual net traffic? You can also hardwire your ARP table for the other users' addresses and flush non-perm entries frequently... - Jy@ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.05.9907020954510.21228-100000>