DNS server feeding a bogus IP
DComTalk.com Forum Index DComTalk.com
Discussion of VoIP, VPN, Video Conferencen, DSL and other data commucations.
 
 FAQFAQ   MemberlistMemberlist     RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 
 
Google
 
Web dcomtalk.com
DNS server feeding a bogus IP

 
Post new topic   Reply to topic    DComTalk.com Forum Index -> Modems
Author Message
Bit Twister
Guest
Posted: Thu Dec 02, 2004 11:48 pm    Post subject: DNS server feeding a bogus IP Reply with quote
I saw the following in another news group.

"Not to mention when you trust your ISPs DNS server you open yourself up to
being mislead even if the DNS server isn't compromised.

This is especially easy to do in most cable-modem networks because
the entire neighborhood is on "broadcast" where everyone in the
neighborhood sees all the traffic from each other.

Here's a scenario, your neighbor has his box set up to listen for
your dns requests going out. When his box sees your request go out it
crafts a response that looks like it is coming from the DNS server
feeding it a bogus IP, thus redirecting your computer to the wrong IP.
"


Is that true on a DOCSIS cable network?

My Motorola SURFboard sb4220 modem status page shows the
Initialize Baseline Privacy Done
which I thought encripted the packets passed through it.

Now that I think about it, if it encripted the packets how would
they get where they need to go?
Back to top
James Knott
Guest
Posted: Fri Dec 03, 2004 2:12 am    Post subject: Re: DNS server feeding a bogus IP Reply with quote
Bit Twister wrote:

Quote:
This is especially easy to do in most cable-modem networks because
the entire neighborhood is on "broadcast" where everyone in the
neighborhood sees all the traffic from each other.

I can see the traffic from the head end, but not other users traffic.
Back to top
Kip Patterson
Guest
Posted: Fri Dec 03, 2004 5:23 am    Post subject: Re: DNS server feeding a bogus IP Reply with quote
Nope, you cannot see other user's upstreams - cable modems do not have
receivers for the upstream channels.


--
Kip Patterson
http://forums.speedguide.net
Back to top
Rick Merrill
Guest
Posted: Wed Jan 19, 2005 1:11 am    Post subject: Re: DNS server feeding a bogus IP Reply with quote
Bit Twister wrote:

Quote:
I saw the following in another news group.

"Not to mention when you trust your ISPs DNS server you open yourself up to
being mislead even if the DNS server isn't compromised.

This is especially easy to do in most cable-modem networks because
the entire neighborhood is on "broadcast" where everyone in the
neighborhood sees all the traffic from each other.

That was only true nearly 9 years ago, and in CT! It is not true
anywhere these days.

Quote:
Here's a scenario, your neighbor has his box set up to listen for
your dns requests going out. When his box sees your request go out it
crafts a response that looks like it is coming from the DNS server
feeding it a bogus IP, thus redirecting your computer to the wrong IP.
"

That would only be possible on a LAN.
Back to top
 
Post new topic   Reply to topic    DComTalk.com Forum Index -> Modems All times are GMT
Page 1 of 1

 
 You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum




VoIP Solutions: Telephone Systems Electronics Satellite TV Tech & Gadgets
Powered by phpBB