Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations IamaSherpa on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Ethernet not Secured

Status
Not open for further replies.
Sort by date Sort by votes
Urgh, GRC - scaremongering capital of the internet.

MAC-based port locking is the easiest solution. It's not as big a problem as has been made out in that article. Nowhere near as big.

Carlsberg don't run I.T departments, but if they did they'd probably be more fun.
 
Upvote 0 Downvote
And who lets juts anybody physically plug into their wired LAN. The security might not be in the LAN itself, but in the environment. Since you need to be physically connected to it, its kind of hard to just walk into an office and plug in.

And any self respecting LAN Manager. Knows exactly where the jacks for their LAN are located and who is using them.

You don't just have rj45 jacks lying around connected to your switch/hub/router for any one to use.





----------------------------------
Ignorance is not necessarily Bliss, case in point:
Unknown has caused an Unknown Error on Unknown and must be shutdown to prevent damage to Unknown.
 
Upvote 0 Downvote
... but it's easy enough to unplug an existing machine and plug yourself into that jack.

Don't EAP Smart Cards solve this problem? I was under the impression that they auth'ed to the switch.
 
Upvote 0 Downvote
Again, You can't just waltz into an office and unplug any computer and then plug yourself without anybody saying anything to you. What kind of an office would that be?

And if you work in the office I'm sure there are policies against plugging in your "laptop" into the corporate network. I know in mine we have to scan the machines for Virii or other nasty software, before allowing them to be connected.

So it really comes down, to how well protected your rj45 jacks are.







----------------------------------
Ignorance is not necessarily Bliss, case in point:
Unknown has caused an Unknown Error on Unknown and must be shutdown to prevent damage to Unknown.
 
Upvote 0 Downvote
What kind of an office would that be?
Click to expand...

One that's ordinarily closed on the weekend (or after hours) but an employee has come in to "catch up".

Sure, we have policies against unauthorized machines on the network, but someone who is out to steal info or exact revenge is going to ignore them.

I can get my MAC addy with ipconfig and then set my laptop to the same...

The fact is that ethernet is an unsecure medium, to those who know enough to exploit it. Thankfully it's complicated enough to do that there are few who can.
 
Upvote 0 Downvote
I, a couple of years ago, plugged a BCM50 into a Corp LAN port by mistake and caused all kinds of havoc, because the BCM (VoIP phone system) was set for DHCP (my bad) and the ISP guys out of Rochester, NY came to TN to troubleshoot the trouble only to find my lowly VoIP system was fighting for DHCP dominance with the Corp domain. They weren't amused...
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Heath Robinson
  • Locked
  • Question
DMX not over twisted pair
Replies
0
Views
223
Heath Robinson
Heath Robinson
ClaireNovice
  • Locked
  • Question
ping -t not working 3
Replies
4
Views
256
Salem
Salem
DrB0b
  • Locked
  • Question
Not sure if exists, need a USB dongle/cable to wireless other end of usb cable
Replies
1
Views
373
LoPath
LoPath
nhlanhla
  • Locked
  • Question
GXW gateway ivr not working
Replies
0
Views
123
nhlanhla
nhlanhla
LOKIDOG
  • Locked
  • Question
Two Ethernet Ports - How to use them? One for Internet, one for linking machines
Replies
0
Views
105
LOKIDOG
LOKIDOG

Part and Inventory Search

Sponsor

Back
Top