|
|
Dhcprelease issue: msg#00346network.dhcp.isc.dhcp-server
*** From dhcp-server -- To unsubscribe, see the end of this message. *** Hello: Using a modificated "dhcping" from http://www.mavetju.org/unix/general.php that only sends DHCPRELEASE packets, we've seen that a malicious client can send this kind of packets with different mac and client IP address inserted into de DHCP part. We've seen that the unicast packet that arrives to the server, in its IP headers, holds the "attacker" IP address. It seems that the server doesn't perform any check to verify that the IP source address is the same that the client IP address to be released. Should the server do this comparison? Is there a way to protect the server from this malicious packets? Thank you very much. hostmaster@xxxxxxxxxxxx ----------------------------------------------------------------------- List Archives : http://www.isc.org/ml-archives/dhcp-server/ Unsubscribe : http://www.isc.org/dhcp-lists.html -or- : mailto:dhcp-server-request@xxxxxxx?Subject=unsubscribe ----------------------------------------------------------------------- |
|
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| Previous by Date: | Re: dhcpd and cygwin: 00346, Phillipe Valle |
|---|---|
| Next by Date: | Re: DDNS: help updates timing out.: 00346, paul |
| Previous by Thread: | Win2k client can't get an IP-adressi: 00346, Stefan Huettmann |
| Next by Thread: | beginner (stop at Sending on Socket...): 00346, Jorris Graad |
| Indexes: | [Date] [Thread] [Top] [All Lists] |
| News | FAQ | advertise |