PaulDotCom mailing list archives
Re: Pxe boot
From: Robin Wood <robin () digininja org>
Date: Tue, 17 Jan 2012 15:06:25 +0000
On 17 January 2012 14:24, Joshua Smith <lazydj98 () gmail com> wrote:
Robin, Scriptjunkie's attack is in trunk, it's listed as a post mod tho as opposed to an exploit since you already need access to the first box. He has some interesting methods in there too for getting code execution once u release the target and let it boot normally. The pxe boot looping issue can be easily solved by killing the dhcp server after the first request or with a better config that checks the vendor info (Microsoft dhcp client will send MSFT, Linux dhcp clients vary but they don't send MSFT obviously)
I'll have a look that that. And I was thinking of mass-pwnage so the server would have to stay up all the time just know who it already served and not serve them the attack a second time within close succession. Robin
-Josh _______________________________________________ Pauldotcom mailing list Pauldotcom () mail pauldotcom com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
_______________________________________________ Pauldotcom mailing list Pauldotcom () mail pauldotcom com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
Current thread:
- Pxe boot Joshua Smith (Jan 17)
- Re: Pxe boot Robin Wood (Jan 17)