troubleshooting Question

Client IP spoofing for access to IP-authenticated web site?

Avatar of madacebo
madacebo asked on
Security
13 Comments2 Solutions1249 ViewsLast Modified:
Hi,

We're considering IP authentication to allow some multi-user clients easier access to our reference information web site. Please briefly explain the risks of spoofing involved in doing this, or links to relevant info.  I don't know enough about TCP/IP networking to really understand the issue.  To me it seems like if someone sends a request that appears to come from another IP address, they may be able to start a user session, but the responses would be sent to the "real" address, making the effort useless.  What's the real story?

Thanks!
ASKER CERTIFIED SOLUTION
ahoffmann

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Join our community to see this answer!
Unlock 2 Answers and 13 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 2 Answers and 13 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros