[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [WEB SECURITY] MachineID fingerprinting

From: robert@xxxxxxxxxxxxx
Subject: Re: [WEB SECURITY] MachineID fingerprinting
Date: Wed, 8 Aug 2007 16:12:05 -0400 (EDT)

> All the other solutions I've seen here involve installing something on
> the client's machine.

I've seen some that do not require installing anything however I can't go to much into details :) 
I'm not looking at how to do it, I'm looking at the most popular implementations, data gathered, and
most importantly the end result and accuracy. 

Points to consider (hoping to hear more specific examples)

- Intranet ips change
- Patch levels change: OS, browser plug-in's (flash/adobe), browsers, etc...
- Hardware changes: disk drive upgrade, new network card, additional drive addition
- Multi users sharing a machine (different os account names)
- Being able to support a reasonable change threshold. If more than X% change then reregistration may be required. 

Regards,
- Robert 


----------------------------------------------------------------------------
Join us on IRC: irc.freenode.net #webappsec

Have a question? Search The Web Security Mailing List Archives: 
http://www.webappsec.org/lists/websecurity/

Subscribe via RSS: 
http://www.webappsec.org/rss/websecurity.rss [RSS Feed]

Follow-Ups:
- RE: [WEB SECURITY] MachineID fingerprinting
  - From: Billy Hoffman

References:
- RE: [WEB SECURITY] MachineID fingerprinting
  - From: Billy Hoffman

Prev by Date: RE: [WEB SECURITY] MachineID fingerprinting
Next by Date: Re: [WEB SECURITY] MachineID fingerprinting
Previous by thread: RE: [WEB SECURITY] MachineID fingerprinting
Next by thread: RE: [WEB SECURITY] MachineID fingerprinting
Index(es):
- Date
- Thread

Brought to you by http://www.webappsec.org
Search this site