[ On Sunday, May 28, 2000 at 12:10:31 (-0700), Jonathan Stone wrote: ]
> Subject: Re: inetd.conf defaults 
>
> I *like* that.  But reserving one ARP entry for each port will defeat
> that attack in the common case of a single peer (and thuse one MAC
> address) per port.

Assuming you've bought a manageable switch that has the ability to lock
a given port to respond to only one MAC.  Definitely not in the $100
range any more though....

-- 
							Greg A. Woods

+1 416 218-0098      VE3TCP      <gwoods@acm.org>      <robohack!woods>
Planix, Inc. <woods@planix.com>; Secrets of the Weird <woods@weird.com>