tags:

views:

91

answers:

2
Q: 

Detect MAC Addresses? - via browser, without a plugin

For validation purposes, is there a way to detect a user's mac address as they're signing up on a webpage, for example? I'd prefer a LAMP approach, but also open to ASP.NET possibilities.

+5  A: 

I guess you could by reading the ARP cache of the underlying OS, assuming that the client and server are on the same network.

However, using the MAC address for validation is under most circumstances a bad idea:

  • The MAC address can be easily spoofed. Many network drivers allow you to set the address to whatever you want.

  • The MAC address is link local. If there is at least one router between the server and the client, the server will see the closest routers MAC address.

Anders Lindahl  2010-07-19 05:32:31
I guess it appears the only way to detect the mac address is to to use a client-side plugin. The original idea is to try to use it as validation-by-device -- for a use-case where many users will be on hte same local WiFi / same IP address.
ina  2010-07-19 06:02:16
I'd suggest using regular cookie-based sessions, an SSO (or user+password) framework or client certificates. Which is best depends on your situation and environment.Try to use a common and proven technique before re-inventing the wheel. It's well worth the effort.
Anders Lindahl  2010-07-19 06:11:59
Well, there's also a validation problem. One account per user - cookie-based sessions, they could just log out, and create a new account... or use a different browser.
ina  2010-07-19 06:32:27
If you plan to let users create their own accounts, you will have to accept that a single person might create several accounts. If you go down the route of identifying the web terminal you will run into cases when a person has a perfectly legitimate reason to change terminal. Take a step back and think about why unique users is important to you. How about using OpenID, http://openid.net/ ?
Anders Lindahl  2010-07-19 07:23:35
A: 

Trying to detect mac-addresses is not a good idea.

But you can use a Java Applet to do so. The user will have to allow it to run though.

The Java Applets can be embedded in any webpage

Here is how you do it http://techdetails.agwego.com/2008/02/11/37

Hrishi  2010-07-19 05:38:49

related questions

Make Browser Window Blink in Task Bar
Large File Download
Browser's Default CSS
Disable browser 'Save Password' functionality
What's the simplest way to decremement a date in Javascript by 1 day?
Browser scrollbar
Limitations of screen readers.
Version detection with Silverlight
Best way to fix CSS/JS drop-down problem in IE7 when page includes Google Map
Recommendations for browser add-on tools to help with development
Hyperlinks displaced on IE7
Building Standalone Applications in JavaScript
HTML differences between browsers
Browser Sync accross many machines
Getting selected text in a browser, cross-platform.
How to get PNG transparency working in browsers that don't natively support it?
Best WYSIWYG CSS editor?
Javascript events
Preferred way to use favicons?
IE6: To support or not to support.
Getting the text from a drop-down box
Other browsers
Drag and Drop to a hosted Browser control
How can I tell if a web client is blocking ads?
How can I determine a web user's time zone?