Re: [fw-wiz] Link level security with static arp tables
From: Magosányi Árpád (mag_at_bunuel.tii.matav.hu)
Date: 10/14/03
- Previous message: Jeff Bollinger: "[fw-wiz] Re: Spamming, 'hidden' mail server"
- In reply to: Luke Butcher: "Re: [fw-wiz] Link level security with static arp tables"
- Next in thread: Paul Robertson: "Re: [fw-wiz] Link level security with static arp tables"
- Reply: Paul Robertson: "Re: [fw-wiz] Link level security with static arp tables"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: Luke Butcher <luke.butcher@alphawest.com.au> Date: Tue, 14 Oct 2003 17:54:30 +0000
A levelezőm azt hiszi, hogy Luke Butcher a következőeket írta:
>
> You could look into 802.1x MAC Authentication type solutions. Normally
> these however are implemented at a switch level.
>
> Generally EAP/LEAP/PEAP type stuff is normally associated with wireless
> but the concepts apply to any publicly available connection mechanism.
> It's used to secure the first point of entry into the network.
...if you do not take security very seriously.
The problem with leap is that it is known broken
and its support is deprecating.
Of course still better than just dumbly believing in a claimed
identity (MAC address).
If real authentication, integrity and confidentality is needed,
I would do IPSEC. Any other (or same) ideas?
-- GNU GPL: csak tiszta forrásból _______________________________________________ firewall-wizards mailing list firewall-wizards@honor.icsalabs.com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- Previous message: Jeff Bollinger: "[fw-wiz] Re: Spamming, 'hidden' mail server"
- In reply to: Luke Butcher: "Re: [fw-wiz] Link level security with static arp tables"
- Next in thread: Paul Robertson: "Re: [fw-wiz] Link level security with static arp tables"
- Reply: Paul Robertson: "Re: [fw-wiz] Link level security with static arp tables"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
