English Turkish
[[!meta title="Call for testing: MAC address spoofing"]]
[[!meta date="Sun, 29 Dec 2013 12:00:00 +0000"]]
You can help Tails! The [[MAC address spoofing|contribute/design/MAC_address]] feature is ready for testing. This feature prevents geographical tracking of your network devices (and by extension, you) by randomising their [[!wikipedia MAC addresses]].
If you have security auditing skills you are more than welcome to review our [[design|contribute/design/MAC_address]] and [[implementation|contribute/design/MAC_address#implementation]].
Every network device (wired, Wi-Fi/wireless, 3G/mobile) has a [[!wikipedia MAC address]], which is a unique identifier used to address them on the local network. Broadcasting a unique identifier in this manner introduce a couple of potential privacy issues for Tails users. Geographical location tracking is the main one: observing a MAC address at a particular location and time ties the corresponding device to the same location and time. If the real identity of the device's owner is known, their movements can be determined. To prevent this one can temporarily change the MAC address to something random at each boot, which is referred to as "MAC address spoofing".
How to download the test image
Download the latest test ISO from [build_Tails_ISO_devel](http://nightly.tails.boum.org/build_Tails_ISO_devel/). **Keep in mind that this is a test image.** Do not use it for anything else than testing this feature.
How to use MAC spoofing in Tails
MAC spoofing is enabled by default in this test ISO. You can change this with a [[startup option|doc/first_steps/welcome_screen]]. The (preliminary) MAC spoofing documentation tries to explain situations where it actually may be a bad idea to keep this option enabled. However, as this is just a test version we of course urge you to not use it for anything serious, and if possible, to test both to enable and disable the option.
What to test
For any MAC spoofing-related issues you experience using this test ISO, please include the output from the following commands when reporting it to us (note: it requires setting an [[doc/first_steps/welcome_screen/administration_password]]):
sudo grep spoof-mac /var/log/syslog
sudo grep unblock-network /var/log/syslog
In particular, we would like you to pay extra attention to the following things:
Verify that the MAC spoofing setting is enforced
Please verify that the MAC spoofing setting you select actually is enforced by issuing the following commands:
. /usr/local/lib/tails-shell-library/hardware.sh
for i in $(get_all_ethernet_nics); do
echo "Interface $i"
macchanger $i
For each network device you'll get an entry looking something like this:
Interface eth0
Permanent MAC: 12:34:56:78:90:ab (unknown)
Current MAC: 12:34:56:f4:fb:22 (unknown)
The "Permanent MAC" is the network device's "real", unique MAC address; the "Current MAC" is whatever it is set to at the moment, spoofed or not. In other words: