[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

v6 security: covert channel through DstOptions

To: v6ops@ops.ietf.org
Subject: v6 security: covert channel through DstOptions
From: Pekka Savola <pekkas@netcore.fi>
Date: Tue, 15 Jul 2003 12:35:41 +0300 (EEST)

Hi,

FYI, FWIW, I came across this:

http://net.suug.ch/articles/2003/07/06/ip6msg.html

.. where someone has hacked a system to pass data between the endpoints 
embedded in unrecognized IPv6 destination options.  Nothing new there, but 
now it has gone operational.

However the attacks could be much more nastier too.

Similar issues have already been discussed in:

http://www.ietf.org/internet-drafts/draft-savola-v6ops-firewalling-01.txt

-- 
Pekka Savola                 "You each name yourselves king, yet the
Netcore Oy                    kingdom bleeds."
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings

Follow-Ups:
- Re: v6 security: covert channel through DstOptions
  - From: itojun@iijlab.net

Prev by Date: draft-roy-v6ops-v6onbydefault-01.txt
Next by Date: Re: v6 security: covert channel through DstOptions
Previous by thread: draft-roy-v6ops-v6onbydefault-01.txt
Next by thread: Re: v6 security: covert channel through DstOptions
Index(es):
- Date
- Thread