Skip site navigation (1)Skip section navigation (2) 
Date:      Thu, 27 Sep 2001 18:05:58 +0000
From:      "WebSec WebSec" <secure21st@hotmail.com>
To:        fabre@matranet.com
Cc:        will@physics.purdue.edu, security@FreeBSD.ORG
Subject:   LaBrea for BSD?
Message-ID:  <F1358Dt5zt47jO9ljL20000943a@hotmail.com>
next in thread | raw e-mail | index | archive | help 
<html><div style='background-color:'><DIV><FONT face=Helv color=#000000 size=2>
<P>This solution should only be used in DHCPed environents.&nbsp; You would have problems if you are to assign a static address in a DHCPed environment anyhow.</P>
<P>&nbsp;</P>
<P>This could worm but would require some hooks in the ISC DHCP server</P>
<P>code.</P>
<P>There'd still be a problem, though, if you were using fixed IPs and no</P>
<P>DHCP. Here's the scenario: You turn off your workstation; the tarpit claims</P>
<P>its address; you come in next morning and turn it on; your workstation reports</P>
<P>that it is kicking itself off the network because it has ARPed its IP address</P>
<P>and found it in use by someone else. (Windows machines with fixed IPs always</P>
<P>do this; other operating systems might as well.)</P>
<P>--Brett</P>
<P>At 11:43 AM 9/27/2001, WebSec WebSec wrote:</P>
<P>&nbsp;</P>
<P>&gt;Here is an idea,</P>
<P>&gt;</P>
<P>&gt;How about LaBrea for BSD (installed on a DHCP Server) automatically takes all IPs and releases them as clients request those IPs?</P>
<P>&gt;</P>
<P>&gt;Another idea is that LaBrea server installed on DHCP "informs" LaBrea clients which IPs to emulate....</P>
<P>&gt;</P>
<P>&gt;</P>
<P>&gt;</P>
<P>&gt;Serg Perfi - YDAP security consulting group</P>
<P>&nbsp;</P>
<P>To Unsubscribe: send mail to majordomo@FreeBSD.org</P>
<P>with "unsubscribe freebsd-security" in the body of the message</P></FONT><BR><BR><BR>The reasonable man adapts himself to the world; </DIV>the unreasonable one persists in trying to adapt 
<DIV></DIV>the world to himself. Therefore all progress 
<DIV></DIV>depends on the unreasonable man. 
<DIV></DIV>
<DIV></DIV>-- George Bernard Shaw 
<DIV></DIV></div><br clear=all><hr>Get your FREE download of MSN Explorer at <a href='http://go.msn.com/bql/hmtag_itl_EN.asp'>http://explorer.msn.com</a><br></html>;

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?F1358Dt5zt47jO9ljL20000943a>