I love the kind of #infosec research as demonstrated in the TunnelVision paper: someone took time to recheck DHCP, a protocol that has been looked at hundreds of times, found an obscure DHCP option from 2002 (!) that is rarely used for anything useful, but it’s still implemented by most operating systems (!) and concluded it effectively introduces a backdoor that allows VPN snooping on a local network 🤷 On high level, it’s just yet another reason to abandon IPv4 with its rather ancient client configuration mechanism and move on to IPv6 which has much more consistent and better designed SLAAC, NDP, SEND etc.
Add comment