Firewalls: Re: Firewalls vs Blocking Sites

Firewalls
(October 1996)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Firewalls vs Blocking Sites
From:	Todd Graham Lewis <lists @ reflections . mindspring . com>
Date:	Wed, 30 Oct 1996 09:48:09 -0500 (EST)
To:	firewalls @ GreatCircle . COM
In-reply-to:	<199610300800 . JAA12906 @ hvar . mzt . hr>

On Wed, 30 Oct 1996, Damir Rajnovic wrote:

> Joe can lock his PC but he can't stop me from changing IP address of my
> PC (to Joe's address, of course). I know that this requires a little
> technical knowledge but that way I can prank Joe without leaving my
> desk.

Actually, you might want to open a raw socket and place Joe's MAC address 
in your ether headers while he's getting some coffee.

"It's in the arp table, it has to be him!"

The only way to have accountability is with authentication-dependent 
service access.  No (secure) password, no service.  Think Kerberos, or 
something similar.

__
Todd Graham Lewis             Linux!                 Core Engineering
Mindspring Enterprises  tlewis @
 mindspring .
 com   (800) 719 4664, x2804

References:

Re: Firewalls vs Blocking Sites
From: gaus @ znanost . hr (Damir Rajnovic)

Indexed By Date	Previous:	Re: NETWARE SECURITY/REMOTE LOGINS From: Mark_W_Loveless @ smtp . bnr . com
Indexed By Date	Next:	Re: Firewalls vs Blocking Sites From: "Sean Fuller" <c60201 @ zone . arnold . af . mil>
Indexed By Thread	Previous:	Re: Firewalls vs Blocking Sites From: GUINET Thierry <thierry @ namsa . nato . int>
Indexed By Thread	Next:	Re: Firewalls vs Blocking Sites From: Joe Loiacono <jloiacon @ csc . com>