Home page logo

nanog logo nanog mailing list archives

Re: Spoofing ASNs (Re: SNMP DDoS: the vulnerability you might not know you have)
From: Florian Weimer <fw () deneb enyo de>
Date: Sun, 11 Aug 2013 18:14:28 +0200

* Christopher Morrow:

On Sun, Aug 11, 2013 at 11:40 AM, Florian Weimer <fw () deneb enyo de> wrote:

Apparently, they're implementing DNS proxy by destination-NATting, and
because they listen also on the WAN interface, they get the source
address wrong.

This is quite scary.

which part? the fact that most NAT implementations on CPE are crap? or
the spoofing bit?

The spoofing bit.  Among other things, it makes the impact of CPE
crappiness non-localized.

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]