security issue!!
Chuck Swiger
cswiger at mac.com
Wed Feb 8 22:06:02 UTC 2012
On Feb 8, 2012, at 1:53 PM, Коньков Евгений wrote:
> some host on LAN can send packets to MAC address of FreeBSD server
>
> and server accept packets even if frame is not in its subnet and pass them further %-)
>
> details here
> http://www.freebsd.org/cgi/query-pr.cgi?pr=164914
Um, what were you expecting to have happen?
It's not that unusual for someone to setup a bridge or VPN/proxy-arp configuration where an interface doesn't have an IP, but still receives and forwards (or otherwise processes) the traffic which it sees, because the traffic is addressed to the MAC address of that interface....
Regards,
--
-Chuck
More information about the freebsd-net
mailing list