Re: Interesting new spam technique - getting a lot more popular.

About Merit

Services

Network

Resources & Support

Network Research

News

Events

Home

Discussion Communities: Merit Network Email List Archives

North American Network Operators Group

Re: Interesting new spam technique - getting a lot more popular.

From: Chris Edwards
Date: Wed Jun 14 06:30:48 2006

On Wed, 14 Jun 2006, Christopher L. Morrow wrote:

| how about just mac security on switch ports? limit the number of mac's at
| each port to 1 or some number 'valid' ?

Hi,

Just to be clear, simple L2 mac security doesn't help here.  

This attack (arp spoofing on a shared subnet) does not involve more than 
one mac per switch port.  Nor are there any changes in switch port / mac 
associations.

You need to watch at the higher layers (arp, ip).

Cheers


--
Chris Edwards, Glasgow University Computing Service

References:
- Interesting new spam technique - getting a lot more popular. Suresh Ramasubramanian
- Re: Interesting new spam technique - getting a lot more popular. Christopher L. Morrow

Prev by Date: Re: wrt joao damas' DLV talk on wednesday
Next by Date: RE: Interesting new spam technique - getting a lot more popular.
Date Index
Thread Index
Author Index
Historical