On Fri, Sep 26, 2014 at 11:27 AM, Derek Smithies <[email protected]> wrote:
> The proof of concept above seems a little strange. The person running the > dhcp server puts some "illegal" code into > one of the configuration areas. Seems like the admin person was out to > attack his own network. Wow. > Yes, for the PoC. However, on any networks there's no protection against any computer on there sending DHCP responses to the DHCP *broadcasts* that a normal client sends. So, if there are untrusted computers on the same network as you (which usually isn't the case at home, unless a PC in there has become compromised) they will be able to send rogue DHCP packets, and as there is no authentication in DHCP your machine will proces them. > I guess what I am trying to work out is why is the advise of some on this > list that my adsl box is a security issue with this shell shock thing. > That's unrelated. They're probably observing that a potentially compromised PC in your local network could be able to use a number of techniques to attack your router, and this is just one more effective technique. Don't worry about it - just patch what you can as soon as you can, and don't allow untrusted machines onto your network. I have a separate SSID for family visitors to use, for example. -jim
_______________________________________________ Linux-users mailing list [email protected] http://lists.canterbury.ac.nz/mailman/listinfo/linux-users
