Jump to content

Interesting 'security' article on BBC News!

Recommended Posts

Thanks for the link. I'm interested in this bit:




If I have a website, and someone loads a page up in their browser, I know I can access their IP address ($_SERVER['REMOTE_ADDR']); is it also possible to get their MAC address too?


Maybe it's not possible to get the client MAC address?


Also, is it possible for a website to get anything else machine related to form the basis of a hardware fingerprint?


It's not usually possible, the only time it would be is if the client submitted it in a request for some reason in which case you'd need something client side to convince the browser to do it. MACs aren't normally sent. MACs are also interface specific, if your device has both an Ethernet card and a wireless card it has at least 2 MACs in use (although not necessarily at the same time).


As for the article, there's so much nonsense in there it's hard to take it serious.

Edited by fnkysknky

Share this post

Link to post
Share on other sites

I've never read so much rubbish in all my life, I had to stop at MAC address. It'd take me all day to point out the errors. If my name was Akif Khan & I worked in computer security I'd be complaining.


---------- Post added 01-02-2013 at 17:25 ----------


Say, if IP addresses are being logged by a website...


For the same person who keeps coming back to this website, using the same internet connection, how likely is his IP to change, per visit?


Also, how likely is it he will share the same IP address as another person? (on a different internet connection).


Impossible to answer exactly, varies widely depending on the type of connection used & provider, but that would normally happen quite frequently. Some connection's IP address will change daily, could be even more often if you're on mobile. There are only a limited number of addresses.


Blocking a card because somebody's IP address had changed would be ridiculous. There is no way a website on the internet can see your computer's MAC address.


It would be quite hard for any website to find out that you'd changed motherboard, never mind block your card for it. If you'd updated browser, or OS they'd see that, but still not going to block your card for it.


My guess is this journalist uses Nat West & it's their fault. Seems much more likely than a motherboard issue.


What we have here is a clueless journalist that has got everything backwards & made the rest up.

Edited by anywebsite

Share this post

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.