DHCP!
Luciano Miguel Ferreira Rocha
strange at nsk.no-ip.org
Mon Feb 9 18:48:19 UTC 2004
On Mon, Feb 09, 2004 at 04:01:32PM -0200, Nelson Guedes Paulo Junior wrote:
>
> HWADDR=xx:xx:xx:xx:xx:xx
>
> And the MAC in there, was the MAC of the NIC of the first machine, not
> the one I'm running now.
>
> My question is, it's not a security flaw let someone change the MAC that
> way???
Only the super-user may change the MAC address. Some other OSs also allow
the change of the MAC address (like WinNT).
Anyway, as the MAC address can be changed, so does the IP address, or
hand-crafted packets be injected to the network.
If you have security measures that depend on the MAC or IP address on your
network but you don't trust your users, then don't give then root
privileges or just reevaluate the security measures.
Regards,
Luciano Rocha
More information about the users
mailing list