The admin would (manually) choose an IP address for a particular host's MAC address, and also (manually) add a permanent DNS record for the chosen IP address. IMHO the correct way to do this (assuming dynamic address assignment is desired), is via DHCP reservation. It always seemed odd and wrong to me that DNS could be updated as a result of a DHCP assignment. This began as a Windows only thing, but it's now supported by some other DHCP servers as well. Without details (because the article has withheld them), but given the title and overview, this attack makes use of Microsoft's "extensions" to the DHCP protocol that allow updates to DNS records from hosts with dynamically assigned IP addresses. Microsoft seems to either ignore the security repercussions of their design decisions, or more cynically, they deliberately introduce attack vectors.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |