[11667] in North American Network Operators' Group
Re: Implementing anti-abuse techniques on ISP networks....
daemon@ATHENA.MIT.EDU (Christopher Masto)
Thu Aug 7 17:28:07 1997
Date: Thu, 7 Aug 1997 17:09:42 -0400
From: Christopher Masto <chris@netmonger.net>
To: nanog@merit.edu
In-Reply-To: <v03102806b00fd02e6285@[10.11.12.33]>; from Michael Dillon on Thu, Aug 07, 1997 at 12:22:28PM -0700
On Thu, Aug 07, 1997 at 12:22:28PM -0700, Michael Dillon wrote:
> >For those scoring along at home, it's not easily possible with the
> >RADIUS-based method I suggested, as the RADIUS server doesn't know
> >the dynamic IP that will be assigned until it has already accepted
> >the login. Oh well.
>
> Which RADIUS server are you referring to, there are many.
None in particular. I was referring to RADIUS the protocol.
> RADIUS servers can be hacked to do anything you like and a couple of years
> ago I remember that at least one person had hacked there server to issue
> static IP addresses from a dynamic pool managed by the RADIUS server rather
> than allowing the terminal server to manage its own pool of addresses. This
> sort of hack could be used in conjunction with special filter rules to
> accomplish what you seek.
Defeating the terminal server's pool management, yes. I though it was
obvious that I was referring to allowing the addresses to be assigned
by the term servers. In any case, this has indeed exhausted its
operational interest.
--
= Christopher Masto = chris@netmonger.net = http://www.netmonger.net/ =
= NetMonger Communications = finger for PGP key = $19.95/mo unlimited access =
= Director of Operations = (516) 221-6664 = mailto:info@netmonger.net =
v---(cut here)---v
--
yourname@some.dumb.host.com
"Keep in mind that anything Kibo says makes a great sig." -- Kibo
^---(cut here)---^
