Recent content by Eric

Those are good points about various changes to the dhcpd_config file. In my case, instead of AllowUsers, I create a group and make accounts that are permitted to sign in a part of that group. For example, "AllowGroups remoteuser". That way, if I need to add another username to the list, I...

I used to see multiple probes per second on my network. The most obvious ones are the connections to the servers using ssh to try to guess a password. I saw on one server one day that out of 1.2 million attempts to guess passwords on ssh during the previous two months, more than half were from...

The purpose of IPv6 is to eventually replace IPv4 because of the limited number of IPv4 addresses available. It won't improve your speed except maybe insofar as doing away with the need for translating IP addresses with NAT which will hardly be noticeable.

Suppose it takes about 10 seconds per MAC address. That works out to 8.640 per day. In the current block, that would take more than 7 days of around the clock spoofing to cover a /16 block of addresses. Also, if someone does try spoofing addresses, with the long lease times for the customers...

That would be pretty tough to do. A lot of work changing spoofing MAC addresses with no reward. That is an interesting idea that I hadn't thought of, though. It kind of reminds me of a problem we saw when I was in grad school in the 1970s. The school had an IBM mainframe and a couple of very...

I'm at a small ISP and have been wondering what the longest is that devices will accept. Because of IP address depletion and that this is an ISP, I use a subnet of the CGN (Carrier Grade Network) space of 100.64.0.0/10. The routable addresses we have are set up as pools to be shared by the CGN...