GoFuckYourself.com - Adult Webmaster Forum - View Single Post - Hosts: are non VLAN connections risky? I can grab unused IPs without even trying

rowan · 02-16-2008, 04:19 AM

I have a new server at a new host and noticed that there's no protocol filtering, my server sees ARP and routing requests.

I tried an experiment where I temporarily added a random IP to my server's config and wasn't surprised when I saw that it had grabbed it. In other words, any customer can grab any unused IPs and possibly even the IPs of other customer's boxes (if they respond to the ARP request first). Responding to OSPF routing requests may also produce some interesting results.

In 2008 isn't this kinda risky, and not a common setup these days? Host says it's not cost effective to run VLANs for each dedicated server.

Thoughts from hosts?

02-16-2008, 04:19 AM
rowan Too lazy to set a custom title Join Date: Mar 2002 Location: Australia Posts: 17,393	Hosts: are non VLAN connections risky? I can grab unused IPs without even trying I have a new server at a new host and noticed that there's no protocol filtering, my server sees ARP and routing requests. I tried an experiment where I temporarily added a random IP to my server's config and wasn't surprised when I saw that it had grabbed it. In other words, any customer can grab any unused IPs and possibly even the IPs of other customer's boxes (if they respond to the ARP request first). Responding to OSPF routing requests may also produce some interesting results. In 2008 isn't this kinda risky, and not a common setup these days? Host says it's not cost effective to run VLANs for each dedicated server. Thoughts from hosts?