Re: [Linux-igd-devel] Security issues to address...
Status: Beta
Brought to you by:
krazydime
Menu
▾
▴
Re: [Linux-igd-devel] Security issues to address...
|
From: Armijn H. <ar...@uu...> - 2006-08-20 19:13:39
|
hi, > So, the security issue here is that a malicious control point can add a > port mapping that let an external entity to connect to your IGD on a > port and then forward this connection to another external host > pretending to be your IGD? > I see only two minor bad issues with this scenario: > - Unnecessary traffic is passing through your IGD > - The external host (RemoteHost upnp arg) can be fulled to allow the > connection based on your IP. And basically turn your router in an involuntary onion router. I wouldn't call that "a minor bad issue" ;) > Don't get me wrong. I *do* appreciate your vulnerability report and the > check should be implemented. > However, unless we implement e.g. DeviceSecurity service, a malicious > control point in the LAN can open up whatever port pleases it and be > upnp correct anyway ;-) Yes, unfortunately. UPnP is flawed by design. Too bad there are so many machines using it... armijn -- --------------------------------------------------------------------------- ar...@uu... | http://www.uulug.nl/ | UULug: Utrecht Linux Users Group --------------------------------------------------------------------------- |
