GoFuckYourself.com - Adult Webmaster Forum - View Single Post - Hosts: are non VLAN connections risky? I can grab unused IPs without even trying

rowan · 02-16-2008, 04:34 PM

I discovered later that the random IP I chose to momentarily configure on my server DOES appear to have been allocated to a customer. I was receiving DNS requests that should have been going to their server.

So unfortunately it's also proven that I can grab "used" IPs as well.

I'm not interested in exploiting this but as a customer I'm concerned about someone who may. Imagine if you were able to fool their router into sending you 50% of a host's customer traffic? Or even 10%?

02-16-2008, 04:34 PM
rowan Too lazy to set a custom title Join Date: Mar 2002 Location: Australia Posts: 17,393	I discovered later that the random IP I chose to momentarily configure on my server DOES appear to have been allocated to a customer. I was receiving DNS requests that should have been going to their server. So unfortunately it's also proven that I can grab "used" IPs as well. I'm not interested in exploiting this but as a customer I'm concerned about someone who may. Imagine if you were able to fool their router into sending you 50% of a host's customer traffic? Or even 10%?