A lightly moderated high-traffic forum for disclosure of security information. Fresh vulnerabilities sometimes hit this list many hours before they pass through the Bugtraq moderation queue. The relaxed atmosphere of this quirky list provides some comic relief and certain industry gossip. Unfortunately, most of the posts are worthless drivel, so finding the gems takes patience.

List Archives

Latest Posts

Re: My ISP is routing traffic to private addresses... Justin Elze (May 18)
The idea behind private IP space is it doesn't leave the ISPs AS via BGP to
the rest of the internet.

Re: My ISP is routing traffic to private addresses... Dan Dart (May 18)
Virgin at least use the 172.16.x.x internally to their infrastructure
- and they suggest you use 192.168.x.x for your personal use.
Traceroutes to any "external" address outside of their network go
through a 172.16.x.x

Re: My ISP is routing traffic to private addresses... Kirils Solovjovs (May 18)
It should. Private address ranges are not marked "magic cows" inside a
classical router's firmware.

Still the problem OP is experiencing is strange, since if there is a
local subnet, it should have a priority local route. Why isn't it there?

Btw, I'd be cautious to state that ISP filter incoming packets with
dst=private. The limitation here would be that private ranges will
usually be router upstream, so you...

Re: My ISP is routing traffic to private addresses... Alexander Georgiev (May 18)
It is sad, that many people don't understand network basics. BTW, your
internet router should not forward rfc1918 addresses to the outside,
shouldn't he?

Am 18. Mai 2013 04:09:48 schrieb Gary Baribault <gary () baribault net>:

Re: My ISP is routing traffic to private addresses... Gary Baribault (May 18)
There is no reason for that, you can use the same address inside as
outside so long as you don't try and reach a 10.0.0.0/8 in their
network, and that should never happen. I have seen some networks where
the inside address range is 192.168.0.0/16 or /8 and the outside is as
well, so long as your trying to reach public ranges beyond the next
outside network it works just fine.

Gary Baribault
Courriel: gary () baribault net
GPG Key:...

Re: My ISP is routing traffic to private addresses... Gary Baribault (May 18)
If they use the 10.0.0.0/8 there's no harm, if they use a DOD range or
another 'public' routable range, there is definitely a risk.

Gary B

Gary Baribault
Courriel: gary () baribault net
GPG Key: 0x685430d1
Fingerprint: 9E4D 1B7C CB9F 9239 11D9 71C3 6C35 C6B7 6854 30D1

Re: exploitation ideas under memory pressure Tavis Ormandy (May 18)
Ahh, I just realised a really cute trick, we can make PATHREC->next
point to the same userspace PATHREC, and EPATHOBJ::bFlatten will spin
forever traversing an infinite linked list.

i.e.

PathRecord->next = PathRecord;

While it's spinning, another thread can clean up the pool, then patch
the listnode (because it's in userspace), to break into pprFlattenRec!
Turning this into a clean write-what-where should be trivial.

Anyone...

Re: My ISP is routing traffic to private addresses... Carl \"Thomas\" Guething (May 17)
AT&T won't let you use 10.0.0.0/8 inside your home network on their devices
for the same reason. You will get an error if you try to configure their
device with it.

Re: My ISP is routing traffic to private addresses... Julius Kivimäki (May 17)
Many ISPs do this, usually they hijack DoD ranges. It shouldn't cause any
issues.

2013/5/17 kyle kemmerer <krkemmerer () gmail com>

Re: My ISP is routing traffic to private addresses... mezgani ali (May 17)
There are many ISP that route IP traffic through networks with private
addresses, my ISP to do the same thing and has 10.0.0.0 class A addresses
routable.
May be it is a miss of IP addresses or may be a NAT that was published due
to some network need.

regards,

exploitation ideas under memory pressure Tavis Ormandy (May 17)
List, there's a pretty obvious bug in win32k!EPATHOBJ::pprFlattenRec where the
PATHREC object returned by win32k!EPATHOBJ::newpathrec doesn't initialise the
next list pointer. The bug is really nice, but exploitation when
allocations start failing is tricky.

As vuln-dev is dead, I thought I'd post here, I don't have much free
time to work on silly Microsoft code, so I'm looking for ideas on how to
fix the final obstacle...

Re: My ISP is routing traffic to private addresses... Gary Baribault (May 17)
public or private IPs the problem is the same, but this was a routing
question .. and I see no problem with their using 'private' IPs on their
'inside' routing gear so long as they give me a routable public IP on my
gateway device.

Gary Baribault
Courriel: gary () baribault net
GPG Key: 0x685430d1
Fingerprint: 9E4D 1B7C CB9F 9239 11D9 71C3 6C35 C6B7 6854 30D1

Re: My ISP is routing traffic to private addresses... sec (May 17)
The only problem is that anyone on a cable modem could access their
10.x.x.x/8 address space and frankly who cares.

Me, if they're still not signing (much less encrypting) packets on the
local loop, and continuing to wish real hard that no one builds serial
or other debug ports—or board headers for same—into "certified" cable
modems.

I have a Verizon Wireless femtocell with what looks like an HDMI port
on the bottom, but...

Re: My ISP is routing traffic to private addresses... Gary Baribault (May 17)
I'm having a little trouble understanding the problem here .. my ISP
uses public addresses for our cable modems. I host an SSH server at
home, and given my nightly logs, I can guarantee that it's accessible
from the wide wed ;-), if the intermediate routers in the ISP's network
use 10.x.x.x/8 space, who cares? No one but their techs need to access
them, I assume they filter 'private' addresses at their edge so that...

Re: My ISP is routing traffic to private addresses... Justin Elze (May 17)
This is pretty common practice for ISPs to use private RFC IP space and
route it via iBGP/OSPF/ISIS on their network.

However they don't export this space to the rest of the internet

More Lists

Dozens of other network security lists are archived at SecLists.Org.