Article source: hacking base
Our school has recently bundled Mac and IP, but also on the server (2K), it is really annoying, I think I am a person from unrestricted, how can I be smashed? The ancient Chinese is good, "there is a policy, there is a countermeasure", then I will kill it, and do it.
The principle is as follows:
Mac and IP bundles are on the server, then everyone thinks, what should the scope should be? Of course, only the server is on the client, but if I have modified the IP on the client, what about the server? If you have already thought of this, then the theoretical crack is bundled.
Proceed as follows:
1. First of all, the scope of IP is to be proved and the range of IP is limited. If IP is 172.16.xxx.xxx, Mac is 52-54-AB-12-34-56, then IP scope should be at 172.16.0.1- -172.16.255.255, I don't think it is possible to bundle it, otherwise you can only wait for Die.
2. Do a complete scan for 172.16.0.1--172.16.255.255 to prevent unnecessary trouble (IP conflicts), causing note of the NMS, then don't work.
3, find the IP used by no one, from 172.16.255.255 to 172.16.0.1, because the average network management starts from 172.16.0.1, the back is generally used, the breakthrough is here.
4, in the online neighbor -> attribute -> TCP / IP attribute fixed IP address, 95/98 / me, please see the 5th, 2K, XP to this, open IE, fly on the Internet .
5. Modified IP on the 95/98 / ME system, will be rebooted, to prevent the installation restore card or similar products can only be restarted, then in my computer -> attribute -> NIC -> first disable Enable (need to wait for a while) -> OK, now open IE and try, it is already possible to complete crack
Solution:
The agent service software for installing ISA is managed, the most secure is divided by VLAN, but the switch has supported it.
