Nmap Development: Re: MAC replies

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Nmap Development mailing list archives

Re: MAC replies

From: Tristan Seligmann <mithrandi () mithrandi za net>
Date: Wed, 20 Oct 2004 01:57:28 +0200

On Tue, Oct 19, 2004 at 15:19:56 -0700, Brett Campbell wrote:

ARP is not a very reliable source of authenticity.  Things like tarpits
and proxy-arp make this approach unfeasible.  And some IDS will be 
alarmed by a flood of 200+ ARP requests in < 1s.


It still seems like an ARP ping "method" would be a useful feature; it
doesn't have to be the default.
-- 
mithrandi, i Ainil en-Balandor, a faer Ambar

Attachment: signature.asc
Description: Digital signature

By Date By Thread

Current thread:

MAC replies Adam Jacob Muller (Oct 19)
- Re: MAC replies mark (Oct 19)
  - RE: MAC replies Alex R (Oct 19)
- Re: MAC replies Brett Campbell (Oct 19)
  - Re: MAC replies Tristan Seligmann (Oct 19)
- Re: MAC replies Fyodor (Oct 21)
  - Re: MAC replies doug (Oct 21)