[154879] in North American Network Operators' Group
Re: using "reserved" IPv6 space
daemon@ATHENA.MIT.EDU (valdis.kletnieks@vt.edu)
Sun Jul 15 11:46:03 2012
To: Jimmy Hess <mysidia@gmail.com>
In-Reply-To: Your message of "Sat, 14 Jul 2012 17:37:37 -0500."
<CAAAwwbUHkuDhKfyq6UbnXigA0bDuKs5tdFra-EKcGMQv8-MSSw@mail.gmail.com>
From: valdis.kletnieks@vt.edu
Date: Sun, 15 Jul 2012 11:44:50 -0400
Cc: nanog@nanog.org, Brandon Ross <bross@pobox.com>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
--==_Exmh_1342367090_2294P
Content-Type: text/plain; charset=us-ascii
On Sat, 14 Jul 2012 17:37:37 -0500, Jimmy Hess said:
> The good news is one 'ifconfig' just tells them what network
> address you're in.
> Unless the attacker can gain access to your host's NDP table or ARP
> table, they can't see what IPs are in use.
All it takes is one USB stick left out in the parking lot for an employee..
By the time they get enough access to do an 'ifconfig', rest assured that they
can see the NDP/ARP tables and all the traffic on that network segment as well.
(OK.. maybe for some reason they can't - but if you're betting your security
model on somebody getting a beachhead on one of your machines and *not* having
full access to the network segment, I'll be more than happy to take the other
side of the bet).
--==_Exmh_1342367090_2294P
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001
iQIVAwUBUALlcgdmEQWDXROgAQKMLw//c6uLu/McvfjSzmX5F8Lgn4LrF+s2OJvp
ENKEtVuOY+LouDnE2Gh2EZWtWGFVfMHjsESML0k9FDrSLlXS3E6pftXg0qcU2X1T
HjhAVmrYjAat5fKm5jdSaoYYhXYnzygB1tV9bM1ARtu7V/DGJTGXNCnDKZ/QoZUs
cD6sTxv4+WRxL1ZG5TMYFZWvWmO9v41ZBF2F5xuOF5EhQ/6r1PQUP1+hJsVXBXGd
Jr2GL3PIk/9t9tmn60mRTD0aCPpO4eCs1bgCHjyXehAQaf6eOII2F0oqnyzA5raY
/HDJueBwx8uk6pQpaw2EpD7BKFzcSpLCJ0s6AKSY9ixbv+LbPAMxLPfCz8Yj0mtR
e4zkYNCbR2zjKXx43nfRnUD2kkQt0cNfKKvenoaps/bfPUgNqAJWORysSMMWWr1f
8MU2IrxtFgQr45G6djE8NvoTdInFatXSVYM/dPeR3LjDpYK5oThLZzjTDdDXQ+on
dd0JJVHb53rrOZPJkZgImGb1ZRxaY3/T0Rlek7wdmGX3ieZ3q8vpPVPg1K8Y9hEu
JDNZQ+0s3uC3FcfGo5AIkGex55L5xSTgLNG366v4K5eEierK96DuYRP8ljXU6RwJ
Ef7StfNC1TTenLOh5ZJe9d6GhWNf216Mnmp8KETTBEBoZcyn5RBVjOFOgfba+GFO
bAumyTc6Ijg=
=kOlV
-----END PGP SIGNATURE-----
--==_Exmh_1342367090_2294P--
