From owner-freebsd-security Sun Dec 10 21:58:54 2000 From owner-freebsd-security@FreeBSD.ORG Sun Dec 10 21:58:52 2000 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from irev.net (irev.net [63.101.244.233]) by hub.freebsd.org (Postfix) with ESMTP id B6AED37B400 for ; Sun, 10 Dec 2000 21:58:51 -0800 (PST) Received: from cx443070b (cx443070-b.vista1.sdca.home.com [24.0.36.170]) by irev.net (8.11.0/8.9.3) with SMTP id eBB5wot37710; Sun, 10 Dec 2000 21:58:50 -0800 (PST) (envelope-from data@irev.net) Message-ID: <002a01c06337$c005f1a0$aa240018@cx443070b> From: "Jeremiah Gowdy" To: "Daniel Hauer" , References: <3A3457AA.7507D386@enter.net> Subject: Re: MAC Address Date: Sun, 10 Dec 2000 22:01:05 -0800 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org > > I'd want to do it because at our university there are plugs for laptops on > > DHCP network, but DHCP server knows everyone's MAC address so all my > > activity is logged when I use it. Changing my MAC address would open some > > interesting posiblities. > > Sounds to me all this is just_slightly_unethical_if > _not_bordering_on_illegal. This is a topic for a security mailing list? > I thought we were here to boost network security, not circumvent it. > Just a network technician's opinion. Illegal or unethical to mess with IP/DHCP/MAC configuration on a network ? So, if I connect to a public network and bind someone else's IP address, should I be punished ? Is that evil ? Come on. I'm a network admin, and even I don't take it that seriously. If someone on my network evades my logging somehow, then that violates my Terms of Service, and if I'm smart enough to detect them, I shut them down, and maybe ban them from the network. If I don't detect them, more power to them. I happen to be one of the people who think the burden of security is on the administrator to make the system secure, and not on the "hacker" (or whatever your favorite term is) to be nice enough not to exploit my network. How do you think network security is "boosted" ? By people not "hacking" things ? No offense, just this network administrator's opinion. If you're into network security, but you're not into a little hacking (your own system or someone else's), then you're not exactly seeing the whole picture. Security flaws are *often* fixed because someone exploits them. I'm not advocating abusing people's systems, but there's a certain amount of Necessary Evil that has to be done. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message