| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <50B4D43A.7030208@gont.com.ar> Date: Tue, 27 Nov 2012 11:54:50 -0300 From: Fernando Gont <fernando@...t.com.ar> To: netdev <netdev@...r.kernel.org> Subject: VPN traffic leaks in IPv6/IPv4 dual-stack networks/hosts Folks, FYI. This is might affect Linux users employing e.g. OpenVPN: <http://tools.ietf.org/html/draft-gont-opsec-vpn-leakages>. For a project such as OpenVPN, a (portable) fix might be non-trivial. However, I guess Linux might hook some iptables rules when establishing the VPN tunnel, such that e.g. all v6 traffic is filtered (yes, this is certainly not the most desirable fix, but still probably better than having your supposedly-secured traffic being sent in the clear). P.S.: Not sure if this is the right list to send this note. Please advice of a more appropriate one and/or feel free to forward this note if deemed appropriate... Thanks, -- Fernando Gont e-mail: fernando@...t.com.ar || fgont@...networks.com PGP Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF D076 FFF1 -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists