[141517] in North American Network Operators' Group
Re: Be aware of SLAAC adresses
daemon@ATHENA.MIT.EDU (Jay Ashworth)
Wed Jun 8 17:01:37 2011
Date: Wed, 8 Jun 2011 16:53:17 -0400 (EDT)
From: Jay Ashworth <jra@baylink.com>
To: NANOG <nanog@nanog.org>
In-Reply-To: <BANLkTinNWBBoaZKZJ2bvnzQj7AWf88Rmuw@mail.gmail.com>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
----- Original Message -----
> From: "J=C3=A9r=C3=B4me Nicolle" <jerome@ceriz.fr>
=20
> Second, it's beeing a little too transparent as the MAC adress may
> reveal the server's manufacturer, approximate manufacturing tdate, or
> the network controler model. Some may use it as a clue to design a
> proper exploit...
Security by obscurity isn't *bad*, it's just one small component of a Defen=
se
in Depth, still worth using if you can. Necessary, but not sufficient.
Cheers,
-- jra
--=20
Jay R. Ashworth Baylink jra@baylink.=
com
Designer The Things I Think RFC 2=
100
Ashworth & Associates http://baylink.pitas.com 2000 Land Rover =
DII
St Petersburg FL USA http://photo.imageinc.us +1 727 647 1=
274
