[pve-devel] pve-firewall: dhcp snooping
Stefan Priebe - Profihost AG
s.priebe at profihost.ag
Wed Jun 4 14:16:28 CEST 2014
Am 04.06.2014 14:13, schrieb Dietmar Maurer:
>>> What happen in case of a malicious hacker, which send false dhcp response
>> over the network ?
>>
>> Where / at which point? Normally you have a trusted MAC and IP for DHCP
>> Server.
>>
>> Then on the switches itself you also use DHCP Snooping. So how could an
>> attacker send wrong packets through the network?
>
> The attacker is inside the VM.
>
inside the VM where your DHCP live?
Then he already has control over all your DHCP network.
Stefan
More information about the pve-devel
mailing list