nanog mailing list archives

Re: Question re session hijacking in dual stack environments w/MacOS

From: Michael Brown <michael () supermathie net>
Date: Sat, 26 Sep 2015 23:19:12 -0400

‎> Those site eventually learnt after much feedback not to assume on IPv4 address continuity.

I could envision that those checks might now be relaxed‎ to checking for address continuity in the same /24 for 
instance.

But when you're seeing the same session being used from two wildly different places (in this case, IPv4 and IPv6) at 
the SAME TIME, that does seem rather suspicious in the absence of other information.

M.

Current thread:

Question re session hijacking in dual stack environments w/MacOS David Hubbard (Sep 26)
- Re: Question re session hijacking in dual stack environments w/MacOS Ca By (Sep 26)
- Re: Question re session hijacking in dual stack environments w/MacOS Laszlo Hanyecz (Sep 26)
- Re: Question re session hijacking in dual stack environments w/MacOS Mark Tinka (Sep 29)
- <Possible follow-ups>
- Re: Question re session hijacking in dual stack environments w/MacOS Brandon Butterworth (Sep 26)
  - Re: Question re session hijacking in dual stack environments w/MacOS Michael Brown (Sep 26)
- Re: Question re session hijacking in dual stack environments w/MacOS Dovid Bender (Sep 26)
  - Re: Question re session hijacking in dual stack environments w/MacOS Valdis . Kletnieks (Sep 27)
  - Re: Question re session hijacking in dual stack environments w/MacOS Connor Wilkins (Sep 27)
    - Re: Question re session hijacking in dual stack environments w/MacOS Christopher Morrow (Sep 27)
- Re: Question re session hijacking in dual stack environments w/MacOS John Schimmel (Sep 28)
  - Re: Question re session hijacking in dual stack environments w/MacOS Laszlo Hanyecz (Sep 28)