Path: utzoo!attcan!uunet!edsews!rel!bob
From: bob@rel.eds.com (Bob Leffler)
Newsgroups: comp.dcom.lans
Subject: Re: Detecting Unauthorized Connections on Network
Summary: unauthorized nodes
Message-ID: <1120@rel.eds.com>
Date: 10 Nov 88 22:47:32 GMT
References: <5571@polyslo.CalPoly.EDU>
Distribution: comp.dcom.lans
Organization: Electronic Data Systems, Troy, MI
Lines: 25

In article <5571@polyslo.CalPoly.EDU>, mliu@polyslo.CalPoly.EDU (Mei-Ling L. Liu) writes:
> 
>        *** Detecting Unauthorized Connections on Your Network ***
> 
>        I am anxious to hear from people who  have  looked  into  or  have
>        implemented tools to detect unauthorized connections on their net-
>        works.

I have an application that listens to ethernet and collects ethernet
hardware addresses.  We then compare this listing to the list of known
nodes.  With a lanalyzer it is then pretty simple to locate the foreign
node.

This works pretty well in our environment where we have physical security
of most devices.  The only real problem we get is a user that decides
he wants to re-arrange his cube and starts unplugging cables.

bob



-- 
Bob Leffler - EDS, GM Truck & Bus Account (313)456-5375
bob@rel.eds.com or {uunet!edsews, rutgers, umix}!rel!bob
Opinions expressed may not be those of my employer.