802.1x Considerations

Saw a Microsoft article referenced over at TaoSecurity.
It argues that 802.1x on a wired network does not provide the security you think it does. 802.1x essentially authenticates the initial connection, not each packet. So it is possible for an attacker, a legit computer and a hub to work together to allow the attacker onto the network.