Date: Mon, 23 Jun 1997 10:35:14 +0800 From: chas <sweeting@tm.net.my> To: Barney Wolff <barney@databus.com> Cc: freebsd-isp@FreeBSD.ORG Subject: Re: duplicate IP = security problem ? Message-ID: <3.0.32.19970623102606.00947a80@mail.tm.net.my>
next in thread | raw e-mail | index | archive | help
At 09:53 PM 6/22/97 EDT, Barney Wolff wrote: >> Date: Sun, 22 Jun 1997 20:48:34 +0000 (GMT) >> From: spork <spork@super-g.com> >> >> I don't know of any way to track down what machine it is however... >> >> On Mon, 23 Jun 1997, chas wrote: >> >> > "/kernel duplicate IP address 202.184.153.15! sent from ethernet >> > address 00:a0:40:29:e8:08" > >Using the first 3 bytes of the Ethernet address is usually a good clue. >In this case, for example, 00:a0:40 is Apple Computer. Unless you >have a room full of them, of course. 30 Macs here..... so that is a relief. (of sorts) > It's probably a misconfiguration >rather than an attack. I think that you could be correct. (not wishing to tempt fate) Nothing like a quick scare to start the week and make me actually read that security book on my desk, chas
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3.0.32.19970623102606.00947a80>