 85240 |
 35212 |
|
|
||
|
|
|||||||
| Welcome to the Exploding Garrmondo Weiner Interactive Swiss Army Penis. |
|
GFF is a community of gaming and music enthusiasts. We have a team of dedicated moderators, constant member-organized activities, and plenty of custom features, including our unique journal system. If this is your first visit, be sure to check out the FAQ or our GFWiki. You will have to register before you can post. Membership is completely free (and gets rid of the pesky advertisement unit underneath this message).
|
 |
|
|
Thread Tools |
|
Wark!
 Member 35311 Level 1.10 Feb 2010 
|
Difference between ethernet address and IP address?
Hey
Can anyone please tell me what is ethernet address and its role in security. If someone knows my PC ethernet address, how would it affect my security? What can he do with that ethernet address? I have some knowledge about IP address, many ways of tracing and hiding IP, but I don't know if ethernet address can also be traced. I really wanna know ethernet address is useful for what purpose? Jam it back in, in the dark. |
Member 666 Level 50.98 Mar 2006
|
Someone knowing your PC's Ethernet/MAC address might be able to impersonate your PC by MAC spoofing, but only if you're on the same network.
The MAC address is a unique code that identifies a specific network adapter, and thus can identify a particular PC. How ya doing, buddy? |
|
Chocorific
Member 6745 Level 38.97 May 2006
|
Well, the MAC is not exactly unique since most ethernet circuit firmwares allow it to temporarly override the MAC address.
The standard MAC address of your card also can give the attacker information about the card you're using and so potential weaknesses this card has. Another "harmless attack vector": Knowledge about the MAC address gives you the possibility to forge Magic packets that you inject into the network and trigger certain actions inside the card (like e.g. WakeOnLAN) - of course the card has to be active and configured to react on Magic packets. There can be of course bigger security holes depending on your environment. Example from my campus: We have several unix machines in each office, hooked up to the local ethernet. Ethernet ports in the office can have different states: fully open, closed, conditionally open Closed should be pretty clear. Fully open means that you can also hook up your system (your laptop you brought e.g.) to the port and it receives an IP through DHCP and you have full access to the network + internet. Conditionally open: I found that out because I tried to hook up my laptop to one of the ports. Back then I didn't knew the different states of ports. However I didn't get an IP when disconnecting my office desktop system from the port and connecting my laptop. In the end I tried MAC spoofing (plus some other techniques which I learned from monitoring the traffic between the desktop system and the network) and finally received my IP via DHCP. This shows that you can gain some advantages from knowing the MAC, but it highly depends on your network. And even for me it wasn't really that much of an advantage - I eventually disclosed the vulnerability to our computer laboratory staff and requested to fully open a closed port in the office.  Most amazing jew boots |
sammypetter 
Zergrinch 
LiquidAcid