[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Security problem?

To: misc_(_at_)_openbsd_(_dot_)_org
Subject: Re: Security problem?
From: Darik Horn <darik_(_at_)_gulf_(_dot_)_waterways_(_dot_)_geeky_(_dot_)_net>
Date: Thu, 5 Oct 2000 12:05:49 -0400 (EDT)

In my area, the @Home guys internally use addresses in the 10.x.x.x range.  

For example, if I traceroute on the @Home network between Brantford and
Waterloo in Ontario then all of the hops have addresses in 10.x.x.x except
the target.  I would not ban traffic coming from those addresses because
some of it will be legitimate.

eg:

 1  10.18.0.1  1.848 ms  1.808 ms  9.682 ms
 2  10.0.184.25  3.181 ms  5.611 ms  3.161 ms
 3  10.0.184.130  3.785 ms  3.369 ms  9.434 ms
 4  10.0.184.14  6.759 ms  4.723 ms  4.631 ms
 5  24.112.101.192  6.702 ms  6.67 ms  6.426 ms

[]

On Thu, 5 Oct 2000, Chris L. Mason wrote:

> On Thu, Oct 05, 2000 at 08:23:07AM -0700, Luke Bakken wrote:
> > Try 'arping' in the ports collection on the offending MAC address and see
> > what shows up.
> > 
> 
> Yup, that's it.  There's someone on the local @home network using 10.1.1.2
> as their public address.  Even worse is the fact that not only do I get a
> response from their MAC, but the @home gateway router on .1 also responds!
> 
> Does this mean the @home router is misconfigured?  If so I will send them a
> message and ask them to stop routing private addresses!
> 
> 
> Chris
> 
>

Follow-Ups:
- Re: Security problem?
  - From: Chris L. Mason

References:
- Re: Security problem?
  - From: Chris L. Mason

Prev by Date: RE: 2.7 high load averages.
Next by Date: Re: pico
Previous by thread: Re: Security problem?
Next by thread: Re: Security problem?
Index(es):
- Date
- Thread

Visit your host, monkey.org