CompTIA
SY0-301 · Question #354
SY0-301 Question #354: Real Exam Question with Answer & Explanation
The correct answer is A: MAC Filtering. MAC address filtering is trivially bypassed because MAC addresses are transmitted in plaintext and can be captured and cloned. An attacker can spoof a whitelisted MAC address using freely available tools.
Question
Which of the following means of wireless authentication is easily vulnerable to spoofing?
Options
- AMAC Filtering
- BWPA - LEAP
- CWPA - PEAP
- DEnabled SSID
Explanation
MAC address filtering is trivially bypassed because MAC addresses are transmitted in plaintext and can be captured and cloned. An attacker can spoof a whitelisted MAC address using freely available tools.
Common mistakes.
- B. WPA-LEAP uses a challenge-response mechanism and while it has known weaknesses to dictionary attacks, it is not specifically described as 'easily' spoofed in the same trivial sense as MAC addresses.
- C. WPA-PEAP tunnels authentication inside TLS, providing strong mutual authentication that is not easily spoofed.
- D. Enabling SSID broadcast makes the network discoverable but is a visibility setting, not an authentication mechanism, so it is not relevant to spoofing authentication.
Concept tested. MAC address spoofing vulnerability in wireless auth
Reference. https://owasp.org/www-community/attacks/MAC_Spoofing
Community Discussion
No community discussion yet for this question.