[dhcwg] Security Issue about DHCP

Hai Xu <xuhai@asiainfo.com> Thu, 31 January 2002 09:40 UTC

Received: from optimus.ietf.org (ietf.org [] (may be forged)) by ietf.org (8.9.1a/8.9.1a) with ESMTP id EAA22694 for <dhcwg-archive@odin.ietf.org>; Thu, 31 Jan 2002 04:40:34 -0500 (EST)
Received: (from daemon@localhost) by optimus.ietf.org (8.9.1a/8.9.1) id EAA05212 for dhcwg-archive@odin.ietf.org; Thu, 31 Jan 2002 04:40:37 -0500 (EST)
Received: from optimus.ietf.org (localhost []) by optimus.ietf.org (8.9.1a/8.9.1) with ESMTP id EAA04287; Thu, 31 Jan 2002 04:27:25 -0500 (EST)
Received: from ietf.org (odin []) by optimus.ietf.org (8.9.1a/8.9.1) with ESMTP id EAA04268 for <dhcwg@optimus.ietf.org>; Thu, 31 Jan 2002 04:27:23 -0500 (EST)
Received: from aints2.asiainfo.com ([]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id EAA22556 for <dhcwg@ietf.org>; Thu, 31 Jan 2002 04:27:18 -0500 (EST)
Received: by aints2.asiainfo.com with Internet Mail Service (5.5.2650.21) id <ZQWAVWTD>; Thu, 31 Jan 2002 17:31:18 +0800
Message-ID: <35DE082769ACD311A9AE009027C3CBC902F76466@aints2.asiainfo.com>
From: Hai Xu <xuhai@asiainfo.com>
To: dhcwg@ietf.org
Date: Thu, 31 Jan 2002 17:31:09 +0800
MIME-Version: 1.0
X-Mailer: Internet Mail Service (5.5.2650.21)
Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01C1AA3A.08DEA59E"
Subject: [dhcwg] Security Issue about DHCP
Sender: dhcwg-admin@ietf.org
Errors-To: dhcwg-admin@ietf.org
X-Mailman-Version: 1.0
Precedence: bulk
List-Id: <dhcwg.ietf.org>
X-BeenThere: dhcwg@ietf.org

Hi guys,
I'd like to know whether there are some mechanism to acchieve the following
issues with DHCP:
1. If illegal person set up another DHCP server. Clients will only select
the DHCP server who respond quickly. How to avoid the legal DHCP from being
disturbed by illegal server?
2. In an DHCP domain, clients can also configure themselves with static IP.
Can switches refuse those clients to work?
3. I've been told that DHCP could work with RADIUS to acchieve
authentication before allocating IP address. Are there any mature products
Sorry for disturbing you all. I am looking forward to getting your help.
Network Solution Center of SIBU
Asiainfo Technologies(China) Inc.
Tel:  +86-10-62501658 ext 6319
Fax: +86-10-62501645