On Mon, Mar 6, 2017 at 2:23 PM, Brüns, Stefan <Stefan.Bruens@rwth-aachen.de> wrote:
On So, 2017-03-05 at 09:39 -0500, Greg Freemyer wrote: <snip>
If a user of that WiFi ever brings in a device with a non-static MAC, I will have to get with them and figure out how to make the MAC static. I'm not going to allow a device on that WiFi to trigger notices to me routinely and it is an important security control to know who is connecting to a non-guest WiFi.
Sorry, but mentioning MAC address monitoring and security in a single sentence is ridiculous. The MAC addresses are broadcasted over the air, and can be altered in most cases (even many Android phones).
Kind regards,
Stefan
Stefan, I know MAC spoofing isn't hard to accomplish, but monitoring for new to the network MACs is a best practice in the CIS CC v6.1 document as I recall. https://www.cisecurity.org/critical-controls/Library.cfm It's also low hanging fruit that can be done at no cost. Greg -- To unsubscribe, e-mail: opensuse-arm+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-arm+owner@opensuse.org