egghelp/eggheads community

Ban mac-adress

2002-06-02T10:08:00-04:00

oh I see... hmm Microsoft... I could've known that you could really get all possible information from unprotected windows machines

Statistics: Posted by RedAlert — Sun Jun 02, 2002 10:08 am

Ban mac-adress

2002-06-02T08:00:00-04:00

On 2002-06-01 09:36, RedAlert wrote:

You're probably mixing up MAC addresses and NetBIOS names, these are two completely different things

Sure wasn't, and I am aware of that.

Statistics: Posted by Guest — Sun Jun 02, 2002 8:00 am

Ban mac-adress

2002-06-01T12:59:00-04:00

You're right... but in that case you would be able to sniff and spoof all of the IRC server's traffic too, and that has some additional benefits which make channel bans look pale

Statistics: Posted by RedAlert — Sat Jun 01, 2002 12:59 pm

Ban mac-adress

2002-06-01T12:15:00-04:00

actually, if you were on the same physical subnet as the irc server, then you would be able to get them if you were on an unswitched network. other than that it aint possible.

Statistics: Posted by Petersen — Sat Jun 01, 2002 12:15 pm

Ban mac-adress

2002-06-01T11:36:00-04:00

Such as winblows networking. This is information you never want the public to see. And it is possible to grab from someone else, if they have gapping security holes like port 139.

You're probably mixing up MAC addresses and NetBIOS names, these are two completely different things

About the original question: that's not possible at all; even if all the clients and the IRC server are on the same subnet as you, then packet sniffers like tcpdump would only see the MAC address of the IRC server's NIC, not of any of the clients - afterall you're only directly receiving data from the IRC server, not from the clients.

I'm afraid there's also no other way to identify users that can change their nick, username and IP (I suppose that's what you're after). You'll have to wait till IPv6 is being widely used, IPv6 is said to make dynamic IP assignment unnecessary. But that's still pretty much future talk

Statistics: Posted by RedAlert — Sat Jun 01, 2002 11:36 am

Ban mac-adress

2002-05-31T00:09:00-04:00

Only way you can get someones mac address is, if they are on a very very insecure network. Such as winblows networking. This is information you never want the public to see. And it is possible to grab from someone else, if they have gapping security holes like port 139. If anyone is interested in closing, or finding out if such a hole exists on your machine check out grc.com

Statistics: Posted by Guest — Fri May 31, 2002 12:09 am

Ban mac-adress

2002-05-30T17:27:00-04:00

my knowledge in this area is very limited, but afaik mac addresses are a function of a pysical subnet which are not transmitted over routers. thus afaik you could only do this is you were on the same network section as the user.

Statistics: Posted by Petersen — Thu May 30, 2002 5:27 pm

Ban mac-adress

2002-05-30T16:24:00-04:00

Is it possible to use, e.g. tcpdump and grab a mac-address and use it to ban a users from the channel?

Statistics: Posted by Guest — Thu May 30, 2002 4:24 pm