Re: Ethernet ( MAC ) Address Reliability

From: PLANZ (planz235_at_hotmail.com)
Date: 09/11/03

  • Next message: Seva Batkin: "RE: Ethernet ( MAC ) Address Reliability" 
    To: "William N. Zanatta" <william@veritel.com.br>, <vuln-dev@securityfocus.com>
Date: Thu, 11 Sep 2003 15:30:03 +0800

    There is an interesting tool SMAC (http://www.klcconsulting.net/smac/) for
    windows. In Unix, check with syconfig scripts.

    Regards,
    Planz

    ----- Original Message -----
    From: "William N. Zanatta" <william@veritel.com.br>
    To: <vuln-dev@securityfocus.com>
    Sent: Monday, September 08, 2003 10:17 PM
    Subject: Ethernet ( MAC ) Address Reliability

    >
    > Hey guys,
    >
    >
    > I'm currently studying 'sadoor' ( see links at the foot ), a tool
    > built over a proof-of-concept on monitoring interfaces instead of opening
    > ports. The concept behind the tool consists ( roughly ) on monitoring the
    > interface, waiting for a sequence of ip/tcp/udp key packets ( configurable
    > ) and a command packet which runs a command at the host.
    >
    > The first article ( below ) introduces the tool and the hopotesis of
    > using it as a remote system administration tool. Of course there are many
    > security risks involved when doing it but I believe that a well planned
    > system may work with a fine security level ( just focusing on this tool ).
    >
    > But there's one thing which worries me, the ethernet addresses. This
    > is the point where I want to hear from you, and the question is, how much
    > reliable are these addresses? I know they're spoofable and thus it may
    > bring problems with this kind of software.
    >
    > Anyway I'm still making some research on this ( I'm not a network
    > authority ;] ) but I would really like to hear from you.
    >
    > Thank you all,
    >
    > --
    >
    > References:
    >
    > 1. A Practical Approach of Stealthy Remote Administration
    > http://www.linuxsecurity.com/feature_stories/feature_story-149.html
    >
    > 2. SAdoor's Home Page
    > http://cmn.listprojects.darklab.org
    >
    > --
    >
    > William
    >
    > PS: Sorry for my messy english.
    >

  • Next message: Seva Batkin: "RE: Ethernet ( MAC ) Address Reliability"

    Relevant Pages

    • Re: Router- DG 834?
      ... deeply reluctant to give up the network speed and the reliability of ... Ethernet. ... I've seen recommendations for the DG 834G (or should it be ...
      (uk.comp.sys.mac)
    • Re: Do Macs require IP troubleshooting like PCs do?
      ... clone vendors take shortcuts making the machines less reliable, ... I saw a newish PC the other day using a PCI ethernet card. ... My argument that having it on the board, designed by "1" vendor makes for better reliability, that's a fact, no room for argument, nor correction with something like that. ...
      (comp.sys.mac.advocacy)
    • Re: Updated SCSI/Link drivers available
      ... compared to the other ethernet solutions available for our platform? ... Speed, reliability etc? ... The EtherNEA and Ethernet Adapter II (http://www.asamnet.de/ ... want a mob burning down my house if their hard drives get corrupted, ...
      (comp.sys.atari.st)
    • Re: Do Macs require IP troubleshooting like PCs do?
      ... "PC Clone Vendors" have Ethernet on the motherboard too. ... PCI ethernet card. ... designed by "1" vendor makes for better reliability, that's a fact, no ...
      (comp.sys.mac.advocacy)