Is there a way to use MAC addresses to verify a remote user/computer on the internet?
(Because IP addres don't do a good job of that, since they can be spoofed and stuff, plus most are dynamic)
Printable View
Is there a way to use MAC addresses to verify a remote user/computer on the internet?
(Because IP addres don't do a good job of that, since they can be spoofed and stuff, plus most are dynamic)
Only if they have netbios enabled, because netbios gives away the MAC address. But most people don't have netbios open so you wouldn't have much luck. And BTW I don't think you understand spoofing. Spoofing is sending packets that have forged headers so that people don't actually know the IP it came from. You can just spoof your IP address permanently, and sit on the internet. Doesn't work that way. Spoofing is mostly used to send anonymous packets, thats all. And as for dynamic IPs you can't do a thing about 'em but laugh because those poor bastards have dial-up.
Ok, correct me if I'm wrong, then if the packets are spoofed, the information that they requested (if any), wouldn't be able to find its way back to their machine...?
eh, aren't mac addresses burned into the network card. to change it you have to change the card.
There is a default mac address "burned" into each NIC, but they can be overridden at run time by many os/driver...
Ammo
True. Very true, but still a MAC address can be changed. But if you want to permanently change the address you have to change the adapter. Its the only way, unless you can burn your own eeprom or something.Quote:
eh, aren't mac addresses burned into the network card. to change it you have to change the card
Which is why most spoofed IPs are used to do things that don't need any return data, such as pinging, get my drift? I have also heard of packet intercepting though I do not understand how that works. However you might find some more thorough information at the spoofing and hijacking tutorial, search for it.Quote:
Ok, correct me if I'm wrong, then if the packets are spoofed, the information that they requested (if any), wouldn't be able to find its way back to their machine...?
thanks, khakisrule
How can you ping a host if you can't receive a reply? If the source IP was spoofed, the host replying to the ICMP echo would not be able to reply to the request. I don't believe this can be done, however, please correct me if I'm mistaken.Quote:
Originally posted here by khakisrule
Which is why most spoofed IPs are used to do things that don't need any return data, such as pinging
I never realised it was that simple to change a MAC. Nice to know, thanks for posting it.
pps111: instead of changing your mac on one of your machines, you could also try internet connection sharing with windows 98 if that's the one that can get out the broadband connection. Can't really say that I like internet connection sharing all that much, but I think it should work ok that way.