Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsLAN (ethernet/Wifi/routers/Bluetooth)private address range spoofing


81 posts

Master Geek

Trusted

Topic # 140569 13-Feb-2014 08:46
Send private message

I understand a standard procedure to secure an internet facing router is to block incoming traffic from RFC1918 private address ranges.

My question is: if a hacker is using a source address with a private address, how is this a threat ? I am thinking that the packets cannot be returned to him anyway, due to private addresses not being routable on the net, so he is not getting any return traffic.
So apart from using private source addresses for a one directional DoS attack, how else could this actually cause harm ?

Thanks for any help.

Create new topic
563 posts

Ultimate Geek
+1 received by user: 89


  Reply # 986597 13-Feb-2014 09:28
3 people support this post
Send private message

I've never encountered this but would assume;

Like you mention if I could spoof an internal IP [i.e. 10.1.1.2] to your router then any replies are going to be routed to back to that address on your network which could result in a DDOS vulnerability against what could be your PC, firewall, domain controller etc.

Possibly could also be a way to pass malicious commands to your network devices (NTP update, DHCP release, remote shutdown etc) ? (Duno, just a guess)





3072 posts

Uber Geek
+1 received by user: 503

Trusted

  Reply # 986826 13-Feb-2014 16:24
One person supports this post
Send private message

+1 to that.

They send you a packet such as a ping from a private ip address. Your computer then sends the reponse to that address - which would probably be on the local network.
Okay so it gets dropped and goes nowhere.

They then use a botnet to send you millions of such pings and can cause you all sorts of problems.





Ray Taylor
Taylor Broadband (rural hawkes bay)
www.ruralkiwi.com

There is no place like localhost
For my general guide to extending your wireless network Click Here

Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Chow brothers plan to invest NZ$100 million in technology
Posted 24-Sep-2017 16:24

Symantec protects data everywhere with Information Centric Security
Posted 21-Sep-2017 15:33

FUJIFILM introduces X-E3 mirrorless camera with wireless connectivity
Posted 18-Sep-2017 13:53

Vodafone announces new plans with bigger data bundles
Posted 15-Sep-2017 10:51

Skinny launches phone with support for te reo Maori
Posted 14-Sep-2017 08:39

If Vodafone dropping mail worries you, you’re doing online wrong
Posted 11-Sep-2017 13:54

Vodafone New Zealand deploy live 400 gigabit system
Posted 11-Sep-2017 11:07

OPPO camera phones now available at PB Tech
Posted 11-Sep-2017 09:56

Norton Wi-Fi Privacy — Easy, flawed VPN
Posted 11-Sep-2017 09:48

Lenovo reveals new ThinkPad A Series
Posted 8-Sep-2017 14:37

Huawei passes Apple for the first time to capture the second spot globally
Posted 8-Sep-2017 10:45

Vodafone initiative enhances te reo Maori pronunciation on Google Maps
Posted 8-Sep-2017 10:40

Voyager Internet expand local internet phone services company with Conversant acquisition
Posted 6-Sep-2017 18:27

NOW Expands in to Tauranga
Posted 5-Sep-2017 18:16

Windows 10 Fall Creators Update coming Oct. 17
Posted 4-Sep-2017 14:10


Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.