mailing list archives
RE: Tying a session to an IP address
From: Tom Arseneault <TArseneault () counterpane com>
Date: Mon, 10 May 2004 11:39:46 -0700
It's trivial on UDP but much harder on TCP, though still not imposible. And
with UDP or TCP if you spoof the origin address you will never see the
return packets. It does aid security, but as other users point out, in
todays enviorment of DHCP changing addresses daily, it's unworkable.
I'd say it doesn't do diddly squat to add to security, since it's trivial to
spoof ones address.
- RE: Tying a session to an IP address, (continued)