brycewalterHOTMAIL.COM

• Next message: Erik Fichtner: "Re: DHCP and Security"
• Previous message: Sen_Ml Sen_Ml: "Re: Possible DHCP DOS attack"
• Maybe in reply to: Nitzenberger, Rob, MSgt, AF/XORR: "DHCP and Security"
• Next in thread: Erik Fichtner: "Re: DHCP and Security"
• Maybe reply: Bryce Walter: "Re: DHCP and Security"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Assuming your LAN is using WINS, its pretty trivial to check the WINS
mappings to find the NetBios name thats using a specific IP. MS's WINS
server will often have the user name mapped to the IP in addition to the
computer netbios name. Don't know about non-MS NetBios name servers though.

Bryce Walter

>Need a policy read folks:
>
>The system I "manage" has 3200 users at various locations throughout the
>world, managed by a central NOC. Our firewall permissions (protocol and
>port) are highly restrictive and report any unauthorized actions (ftp,
>pings, finger,.....). The NOC gets a report from the firewall indicating
>which IP was the "offender". If I the LAN clients are configured with
>static IP's, it's easy to attribute the offending action with a LAN client,
>but with DHCP (which is the method of choice for our sys admin types), it
>has proven difficult to "map" an IP address back to a specific user...
>lease
>times expire, inadequate event logging..etc.
>
> How can I configure DHCP to balance the need for security with the wishes
>of the sys admin folks? Any Ideas?
>
>Rob Nitzenberger
>thenitzemail.com

______________________________________________________
Get Your Private, Free Email at http://www.hotmail.com

• Next message: Erik Fichtner: "Re: DHCP and Security"
• Previous message: Sen_Ml Sen_Ml: "Re: Possible DHCP DOS attack"
• Maybe in reply to: Nitzenberger, Rob, MSgt, AF/XORR: "DHCP and Security"
• Next in thread: Erik Fichtner: "Re: DHCP and Security"
• Maybe reply: Bryce Walter: "Re: DHCP and Security"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]