Vulnerability Development mailing list archives
Possible DHCP DOS attack
From: paul () KEEFER ORG (Paul Keefer)
Date: Wed, 2 Feb 2000 21:19:52 -0000
I hope this is the right forum for this. I was contemplating DHCP and how many large organizations rely on it today, and I had a vision so to speak. What if someone were to use up all of the available leases? That would essentially prevent anyone else from obtaining an address. That got me thinking to how easy it would be to very quickly eat up all the addresses on a server. It seems like it would be trivial to use a linux box to use proxy arping to send out a large number of DHCP requests until the server has no more to give out. This of course assumes that the network is not using switches that prevent multiple MACs per port, and that the DHCP servers are not configured to give IPs out only to specific MACs or something like that. One thing that would make this particularly insidious is that the entire attack would take only momemts, and would last until the DHCP database was purged or the leases timed out. Has this already been addressed? Am I missing something fundamental about DHCP?
Current thread:
- Re: distributed.net and seti@home, (continued)
- Re: distributed.net and seti@home Clifford, Shawn A (Jan 31)
- Re: distributed.net and seti@home Seth R Arnold (Jan 31)
- Re: distributed.net and seti@home CyberPsychotic (Jan 31)
- Re: distributed.net and seti@home Oliver Friedrichs (Feb 01)
- Re: distributed.net and seti@home Iván Arce (Feb 02)
- Re: distributed.net and seti@home Oliver Friedrichs (Feb 01)
- Re: distributed.net and seti@home Sen_Ml Sen_Ml (Feb 01)
- Re: distributed.net and seti@home Kerneels (Feb 02)
- Re: distributed.net and seti@home Granquist, Lamont (Feb 03)
- Re: distributed.net and seti@home Steffen Zahn (Feb 04)
- Re: distributed.net and seti@home Sen_Ml Sen_Ml (Feb 01)
- Possible DHCP DOS attack Paul Keefer (Feb 02)
- Re: Possible DHCP DOS attack Sebastian Andersson (Feb 02)
- Re: Possible DHCP DOS attack Eric Hacker (Feb 03)
- Re: Possible DHCP DOS attack C.J. Oster (Feb 03)
- Re: Possible DHCP DOS attack Erik Fichtner (Feb 03)
- Re: Possible DHCP DOS attack Matthew S. Hallacy (Feb 03)
- Re: distributed.net and seti@home Clifford, Shawn A (Jan 31)
- DHCP and Security Nitzenberger, Rob, MSgt, AF/XORR (Feb 03)
- Re: DHCP and Security Erik Fichtner (Feb 03)
- Re: DHCP and Security Seth R Arnold (Feb 04)
- Re: DHCP and Security Jeff Bachtel (Feb 05)
- Re: Possible DHCP DOS attack Michal Zalewski (Feb 03)