Web Authentication Question

Unanswered Question
Mar 4th, 2010
User Badges:

Hi all,

If a guest user authenticates using web-auth is there anything to stop someone sniffing their IP address and MAC address and then impersonating this user. I had always assumed that the "dhcp required" feature would somehow mitigate this but now I'm not so sure.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Scott Fella Thu, 03/04/2010 - 18:09
User Badges:
  • Super Silver, 17500 points or more
  • Hall of Fame,

    The Hall of Fame designation is a lifetime achievement award based on significant overall achievements in the community. 

  • Cisco Designated VIP,

    2017 Wireless

That is agood question.... Well if someone obtains the MAC and IP of a guest wireless users, then I would have to say there is no way you can stop that person from getting on.  People have been doing that for a while at hotspots:)  It is a guest network that isn't on your network so the question is... does it matter.  It is the responsibility of the user on the guest network to protect his or her device as I see it.  Anyways... that person would have to wait for the other device to logoff in order to not have any network conflicts.... but then... if they logoff, the unauthorized user would have to logon.


This Discussion



Trending Topics - Security & Network