Not authenticating only bad guys

2004-09-13 Thread Mike Markowski
For a very open wireless network, we'd like to allow everyone to connect unless we know the MAC is a bad guy. That is, if the MAC address is *in* the postgres db, don't authenticate. If it's not in the db, authenticate. Can anyone think of a way to do this, or will I need to tweak the code?

Re: Not authenticating only bad guys

2004-09-13 Thread Kaczmarek, Thaddeus
On Mon, 2004-09-13 at 08:55, Mike Markowski wrote: > For a very open wireless network, we'd like to allow everyone > to connect unless we know the MAC is a bad guy. That is, if > the MAC address is *in* the postgres db, don't authenticate. If > it's not in the db, authenticate. > > Can anyone th

Re: Not authenticating only bad guys

2004-09-13 Thread Mike Markowski
On Mon 13-Sep-04 at 859 EDT, Kaczmarek, Thaddeus wrote: > On Mon, 2004-09-13 at 08:55, Mike Markowski wrote: > > For a very open wireless network, we'd like to allow everyone > > to connect unless we know the MAC is a bad guy. That is, if > > the MAC address is *in* the postgres db, don't authent

Re: Not authenticating only bad guys

2004-09-13 Thread Thomas MARCHESSEAU
HI Mike, remember: 1/ Its very easy to change MAC on the wifi card . 2/ If the attacker understand that your burn MAC , he could try to DoS your hotspot . As mentionned by Ted in the first reply , its probably better to authenticate only trusted users. (of course it could be by-passed by Bad gu

Re: Not authenticating only bad guys

2004-09-13 Thread Kaczmarek, Thaddeus
On Mon, 2004-09-13 at 09:16, Mike Markowski wrote: > On Mon 13-Sep-04 at 859 EDT, Kaczmarek, Thaddeus wrote: > > On Mon, 2004-09-13 at 08:55, Mike Markowski wrote: > > > For a very open wireless network, we'd like to allow everyone > > > to connect unless we know the MAC is a bad guy. That is, if

Re: Not authenticating only bad guys

2004-09-13 Thread Keith Yoder
Mike Markowski escreveu: For a very open wireless network, we'd like to allow everyone to connect unless we know the MAC is a bad guy. That is, if the MAC address is *in* the postgres db, don't authenticate. If it's not in the db, authenticate. Can anyone think of a way to do this, or will I need

Re: Not authenticating only bad guys

2004-09-13 Thread Alan DeKok
"Kaczmarek, Thaddeus" <[EMAIL PROTECTED]> wrote: > Not for nothing, but would it not be much easier to only authenticate > trusted macs? I suspect the table would be much smaller as well. I've had to work in such systems, it's annoying to the end user. Their passwords are OK, but they're still

Re: Not authenticating only bad guys

2004-09-14 Thread Graeme Hinchliffe
On Mon, 2004-09-13 at 13:55, Mike Markowski wrote: > For a very open wireless network, we'd like to allow everyone > to connect unless we know the MAC is a bad guy. That is, if > the MAC address is *in* the postgres db, don't authenticate. If > it's not in the db, authenticate. > in the radchec