Re: [PLUG] 'Shellshock' Bug Spells Trouble for Web Security

Matt Mossholder on 26 Sep 2014 10:20:10 -0700

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] 'Shellshock' Bug Spells Trouble for Web Security

From: Matt Mossholder <matt@mossholder.com>
To: "Philadelphia Linux User's Group Discussion List" <plug@lists.phillylinux.org>
Subject: Re: [PLUG] 'Shellshock' Bug Spells Trouble for Web Security
Date: Fri, 26 Sep 2014 13:19:42 -0400
Cc: FredStluka <FredStluka@gmail.com>, fred <fred@bristle.com>
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mossholder.com; s=google; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:cc:content-type; bh=gDEmHMDRqJAwPnny/PJVVaVa5Hu6ULAajWaBuHhI/AA=; b=m8RRNvIKHz7lOjRfhCCjyDjRKGNC/WXIUDBbhE6rRHbw6cT294ahzvCeM3B8uujzlm IaxloZcIxxr//+MGrUDiB30XW13l0TZoSU7K1mik6Y6gF6xdkdvATXEyh5G/m6NpVWt6 WdGhgAPF4CP9L9Qwb1qXcZfU0fro83lWJ1LvM=
Reply-to: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>
Sender: "plug" <plug-bounces@lists.phillylinux.org>

On Fri, Sep 26, 2014 at 1:00 PM, Keith C. Perry <kperry@daotechnologies.com> wrote:

Fred,

What are you envisioning as the attack vector from the client point of view? Is the concern that an infected DHCP server could craft a IP OFFER or ACK packet back to your client with an exploit?

~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~
Keith C. Perry, MS E.E.
Owner, DAO Technologies LLC
(O) +1.215.525.4165 x2033
(M) +1.215.432.5167
www.daotechnologies.com

Keith,

That is exactly what can happen. Come DHCP clients hand off information from the DHCP server to scripts for processing. In these cases, you could get whacked by a bad DHCP server.

--Matt

___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

Follow-Ups:
- Re: [PLUG] 'Shellshock' Bug Spells Trouble for Web Security
  - From: "K.S. Bhaskar" <bhaskar@bhaskars.com>

References:
- [PLUG] 'Shellshock' Bug Spells Trouble for Web Security
  - From: Chris Grabowy <cgrabowy@gmail.com>
- Re: [PLUG] 'Shellshock' Bug Spells Trouble for Web Security
  - From: Fred Stluka <fred@bristle.com>
- Re: [PLUG] 'Shellshock' Bug Spells Trouble for Web Security
  - From: Rich Freeman <r-plug@thefreemanclan.net>
- Re: [PLUG] 'Shellshock' Bug Spells Trouble for Web Security
  - From: Fred Stluka <fred@bristle.com>
- Re: [PLUG] 'Shellshock' Bug Spells Trouble for Web Security
  - From: Rich Freeman <r-plug@thefreemanclan.net>
- Re: [PLUG] 'Shellshock' Bug Spells Trouble for Web Security
  - From: Matt Mossholder <matt@mossholder.com>
- Re: [PLUG] 'Shellshock' Bug Spells Trouble for Web Security
  - From: Rich Freeman <r-plug@thefreemanclan.net>
- Re: [PLUG] 'Shellshock' Bug Spells Trouble for Web Security
  - From: Fred Stluka <fred@bristle.com>
- Re: [PLUG] 'Shellshock' Bug Spells Trouble for Web Security
  - From: "Keith C. Perry" <kperry@daotechnologies.com>

Prev by Date: Re: [PLUG] 'Shellshock' Bug Spells Trouble for Web Security
Next by Date: Re: [PLUG] 'Shellshock' Bug Spells Trouble for Web Security
Previous by thread: Re: [PLUG] 'Shellshock' Bug Spells Trouble for Web Security
Next by thread: Re: [PLUG] 'Shellshock' Bug Spells Trouble for Web Security
Index(es):
- Date
- Thread