what about pppoe? clients ship for mac os, windows foo, linux, *BSD. the session terminates on an access concentrator and away you go. or ... what about using IPSec to force the users to register to a IPSec concentrator and only routing traffic through the access concentrator. this is a well known issue that's been addressed with any number of scalable solutions available on the market today. when last we saw our hero (Monday, Aug 05, 2002), Mike Hicks was madly tapping out: > On Thu, 2002-07-25 at 10:19, Austad, Jay wrote: > > The U is using MAC addresses to verify that you can be on the > > network? That's silly. Don't they have some better method of > > authentication? > > I'd love to hear something that would work better with simple > 802.11b hardware and easily installed software on Win9x/NT/etc, > MacOS 8/9/X, and Linux/*BSD/Unix. Really, I would. I'm not trying > to be an ass. > > > Hrm... couldn't you plug in and sniff for ARP requests to get > > some MAC addresses and use ifconfig to change yours to someone > > elses who is already registered on the network? Then you could > > hop on the network without a registered card. :) Just a thought. > > You probably need to have a card that can sniff the aether without > being associated with an AP (some of the APs use RADIUS > authentication on your MAC address to see if you can associate). I > don't play with that stuff enough to know if that's common or not. -- steve ulrich sulrich at botwerks.org PGP: 8D0B 0EE9 E700 A6CF ABA7 AE5F 4FD4 07C9 133B FAFC -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 232 bytes Desc: not available Url : http://shadowknight.real-time.com/pipermail/tclug-list/attachments/20020805/4da14287/attachment.pgp