ietf
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: ARPOP_REQUEST with spoofed IP address (joe, turn it off!)

2002-07-22 03:58:50
from [Matt Crawford] [Permanent Link] 
On Sat, 20 Jul 2002 10:41:02 +0900, Jun-ichiro itojun Hagino 
<itojun(_at_)iijlab(_dot_)net>  said:

    therefore, it is unsafe to transmit ARP_REQUEST with spoofed IP
    source address - it will overwrite ARP entries of neighbors.

 (He meant sender address, of course)
Valdis Kletnieks said:

This is, of course, a major security hole...


Gee, if only ARP's funcntion was performed above the IP layer somehow ...
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: ARPOP_REQUEST with spoofed IP address (joe, turn it off!), Joe Touch
Next by Date:  Re: ARPOP_REQUEST with spoofed IP address (joe, turn it off!), C. M. Heard
Previous by Thread:  Re: ARPOP_REQUEST with spoofed IP address (joe, turn it off!), Valdis . Kletnieks
Next by Thread:  Re: ARPOP_REQUEST with spoofed IP address (joe, turn it off!), Lars Eggert
Indexes:  [Date] [Thread] [Top] [All Lists]