Re: We need to modify the MAC address function of the wireless network card

魏士帅 · ‎05-12-2024

We need to modify the MAC address function of the wireless network card. Please do not obstruct users from freely using the wireless network card, including modifying its MAC address

What safety considerations are there?? It is to increase the inconvenience for users to use. What we need is the use of software authorized by binding MAC addresses, this feature!! Can't you really engage in such behavior?

Is it interesting?? Don't you think about it: if the wireless network card is damaged, the new network card's MAC address is not consistent with the original network card, and all authorized software cannot run, this is the result you want???? Is this really good for the user experience?? All authorizations need to be reapplied for, and reapplying for authorizations requires re payment, which is the result you want!!!!! Intel!!!!

You have to change it, you have to change it if you don't, otherwise we will establish a global forum to crack your technology! This is not considered hacking behavior!! Don't think your hardware can't crack it. That's a big joke!!

We are currently formally requesting from Intel's official management team that all network cards produced by Intel, including wired and wireless, can be changed to MAC address formats at the driver level at will!! If you don't care, then we'll find a manufacturer who can do this feature! You really wouldn't think you would cover up everything, would you?? It's definitely impossible. There are many manufacturers that can produce wireless network cards, not just big and small brands like Intel and Realtek! You really think you can count the majority of users with your little thought!

It's not just imitating Mac, but it can be directly modified... Imitation and modification are two different things. The driver level can be modified. Wireless network card doesn't work, both wired and virtual network cards are fine.

No need for third-party software. What is the relationship between this and imitation??

Do you think this is still the past era? Times have changed!!! Big brother, Intel Company. The number of MAC addresses is limited and cannot guarantee global uniqueness. Big brother... The number of MAC addresses is less than that of IPv6 addresses, right? This problem will happen sooner or later, big brother.

As long as the number of network cards reaches a certain level, you will have to use duplicate addresses, big brother!!!! My Intel big brother!!!

If you don't support it, it doesn't mean that one MAC address per device is equivalent to security. Security and MAC address are two different things. Moreover, MAC addresses are no longer sufficient to prove network security. A router or optical modem can be hacked, damaging firmware, let alone your network card. The flash of the router's firmware will be depleted. In addition, not only the wireless network card, but also the CPU can be changed, dare you say these are all safe!!

So safety reasons are unreliable.

What we mean by changing the Mac is a software change, not a change to the Mac in the hardware. That is to say, any changes made using software can be restored. It's not that third-party software imitates Mac, it's because you don't support it that they do it. This is not related to safety. This is not related to safety. Security needs to consider network security, and MAC address is no longer very important. If security is considered.. If security is taken into consideration, ARP flooding attacks will harm any Mac. But being able to change and not being able to change are two different things!!

The MAC of the hardware firmware does not need to be changed, what is needed is that the driver level can be changed freely. It can also be restored. This should be decided by the user, the manufacturer cannot decide!! The manufacturer has decided to restrict the legitimate right of users to freely use wireless network cards

In fact, our device's SN code, serial number, and MAC address should all support changing, and many hardware devices already support it. Routers all support modification, and wireless network cards that do not support it are considered useless.

Hello, I have checked the regulatory information and it only restricts the use of specified formats or standards of antennas, which has nothing to do with MAC addresses!! Please review again by Intel and modify the wireless network card driver to support MAC address modification... The MAC address is the identifier of the second layer network device and has no relation to the type of wireless signal that the wireless network card can receive or transmit..

In fact, the MAC address is not limited, but rather the frequency band used. For example, in China, the 6GHz frequency band is currently not allowed, which is not related to the MAC address. Because wireless in the 6GHz frequency band in China has not yet been approved, this is a requirement for wireless signal standards and has nothing to do with MAC addresses!!

RyanFeeko · ‎05-13-2024

Hi @魏士帅 , would you mind to share what is exactly you wanted from Big Brother Intel? I think our big brother has there own concerns regarding to this.

MAC addresses are unique identifiers assigned to network interfaces for communication on the physical network segment. While MAC addresses serve important functions in network communication, they can also pose security concerns if not properly managed.

The ability to change a device's MAC address can have both legitimate and potentially harmful implications, depending on the context and intent of the individual changing it.

Legitimate Uses:

1) Privacy: Some users change their device's MAC address to enhance privacy while connecting to public Wi-Fi networks or when using devices in public places. By regularly changing their MAC address, they can prevent tracking by network administrators or third parties.

2) Network Troubleshooting: IT professionals sometimes change MAC addresses for troubleshooting purposes, especially when diagnosing network connectivity issues or resolving conflicts with duplicate MAC addresses on the network.

3) Virtualization: In virtualized environments, MAC address spoofing is often used to assign unique MAC addresses to virtual machines, allowing them to communicate on the network as if they were separate physical devices.

4) Security Testing: Security professionals may change MAC addresses during penetration testing or security audits to assess the effectiveness of network access controls or to simulate different network configurations.

Potentially Harmful Uses:

1) Unauthorized Access: Attackers can change their MAC addresses to impersonate authorized devices on the network, bypassing MAC address-based access controls and gaining unauthorized access to sensitive resources.

2) Network Attacks: MAC address spoofing can be used as part of various network-based attacks, including man-in-the-middle attacks, where an attacker intercepts and potentially alters network communications between two parties.

3) Evasion of Detection: Attackers may change their MAC addresses to evade detection by network security measures, such as intrusion detection systems (IDS) or access control lists (ACLs), that rely on MAC addresses for identifying and blocking suspicious activity.

4) Identity Theft: Changing MAC addresses can be used as a component of identity theft schemes, where attackers attempt to impersonate legitimate users or devices on the network for malicious purposes.

Verdicts, while the ability to change MAC addresses can be useful for legitimate purposes, it also introduces potential security risks if exploited maliciously. Network administrators should implement appropriate security measures, such as MAC address filtering, port security, and network monitoring, to mitigate the risks associated with MAC address manipulation.

Hope this can clarifies your concerns.

魏士帅 · ‎05-14-2024

These harmful uses have no meaning.

Because the Internet itself in today's society is unsafe

Moreover, Unauthorized Access itself has always existed, and it is impossible to achieve it through a fixed Mac.

Network Attacks are everywhere in today's Internet era. It is meaningless to change the mac, because now all network attacks are based on IP, not the mac address

Evasion of Detection is meaningless because even if you fix it, you still cannot escape the practice of evading detection. I can place a small router on the primary network of this adapter and change the MAC address arbitrarily. The MAC address of the small router can be manually changed, and MAC addresses that are not in the same LAN are meaningless. The fixed network card Mac does not receive the expected protection effect. If a small router is connected, regardless of the MAC address, it can be forged.

Identity theft, as I mentioned earlier, cannot be avoided by connecting a wireless network card to a wired network or other wireless network through a small router.

The cost of small routing is also very low.

Therefore, your considerations are meaningless. Even if you fix the network card MAC, you cannot guarantee to connect to a small router or layer 3 switching, which is meaningless.

I think big brother, you should consider how to make it more convenient for users to use. These are meaningless, really. You can take a small route from your superiors to avoid these tests.

In addition, bridging virtual machines to network cards can also achieve this goal, so it is meaningless. There are many ways to avoid it.

So, big brother Intel, it's better to open it as soon as possible.

n_scott_pearson · ‎05-15-2024

I will be blunt. There is no chance of this ever happening. It is possible to manage the MAC address at the BIOS level because physical access can be guaranteed. Opening this to on-the-fly changes by software is a security issue - nay, a nightmare - and Intel takes security issues seriously. No, it just won't happen.

Just saying,

...S

魏士帅 · ‎05-18-2024

BIOS is also software.. This BIOS itself is a type of software. It's just that he was written into the flash chip of the motherboard

n_scott_pearson · ‎05-18-2024

No, it's Firmware. Firmware, as it's name implies, is running in a protected - and, most important, verified - environment.
Look, mincing words is a waste of time. This is a runtime security issue, plain and simple. On the fly modification is simply not supported.
...S

魏士帅 · ‎05-19-2024

Do you still remember the firmware damage incident

魏士帅 · ‎05-18-2024

BIOS is also software.. This BIOS itself is a type of software. It's just that he was written into the flash chip of the motherboard

Pintu · ‎05-18-2024

Hello Wei Shishuai,

Thank you for contacting Intel.

We appreciate you reaching out to us regarding the reported issue. Please confirm if this wireless Ethernet adapter is embedded or manually installed.

Feel free to reply to this email if you have any further questions or need assistance. We're here to help.

Best regards,

Manoranjan.

Intel Customer Support

魏士帅 · ‎05-19-2024

I confirm that it was manually installed.

Sachinks · ‎05-20-2024

Hello Wei,

Thank you for the reply!

As mentioned earlier in the thread, On the fly modification is not supported. However, we appreciate your feedback and we will notify this to our team. Kindly let us know if you have any other issues.

Regards,

Sachin KS

Pintu · ‎05-24-2024

Hello Wei,

Greeting for the Day!

We are currently awaiting your response regarding the case. If you have any queries or require further assistance, please feel free to respond on the community post. We are more than happy to assist you.

Thank you for choosing Intel products and services.

Regards,

Manoranjan Das.