Tab Content
  • docfuz's Avatar
    08-07-2018, 01:43 AM
    Head on to https://hashcat.net/forum/thread-7717.html for the details. In summary, a new spin on the well known password guessing attack against...
    0 replies | 170 view(s)
  • docfuz's Avatar
    07-31-2018, 02:52 AM
    docfuz replied to a thread Anti-virus Suggestions in Off Topic
    Differente stance here. Go with the reputable one you're most attained/used with. Look at it as a commodity, not as a fool-proof solution. For...
    15 replies | 1841 view(s)
  • docfuz's Avatar
    07-27-2018, 12:40 AM
    docfuz replied to a thread DNS rebinding attacks in Networking
    I don't know if it's possible from the gui right now. It would be a nice feature to have UT add a report in Reports->System though :cool:
    42 replies | 760 view(s)
  • docfuz's Avatar
    07-25-2018, 03:28 PM
    Access to UT itself is controlled in Config->Network->Advanced->Access Rules. Have a look there.
    5 replies | 198 view(s)
  • docfuz's Avatar
    07-25-2018, 01:34 PM
    docfuz replied to a thread DNS rebinding attacks in Networking
    Or you can just add stop-dns-rebind in dnsmasq configuration.
    42 replies | 760 view(s)
  • docfuz's Avatar
    07-25-2018, 09:02 AM
    docfuz replied to a thread DNS rebinding attacks in Networking
    BTW, it's always funny how pages and pages of the forum are filled in a hurry on well known and not-so-dangerous topics anyway. What I mean with...
    42 replies | 760 view(s)
  • docfuz's Avatar
    07-25-2018, 08:59 AM
    docfuz replied to a thread DNS rebinding attacks in Networking
    I'm just thinking out loud, but if the pihole or AD dns is on another subnet, that would constitute as a rebinding, so it would be dropped by...
    42 replies | 760 view(s)
  • docfuz's Avatar
    07-25-2018, 08:54 AM
    docfuz replied to a thread DNS rebinding attacks in Networking
    Well, as I said previously thus squashing both the rebinding attack and Plex :D If you really are interested in this, on UT 13.2.1, the man...
    42 replies | 760 view(s)
  • docfuz's Avatar
    07-25-2018, 07:30 AM
    As soon as you will have some noisy devices (Amazon Fire Stick anyone?! :D) you will probably stop having all clients in the same subnet :cool:
    3 replies | 1096 view(s)
  • docfuz's Avatar
    07-25-2018, 07:27 AM
    docfuz replied to a thread DNS rebinding attacks in Networking
    If I said adequate, I misspelled it. I thought I said (hope so :D) that UT doesn't actively mitigate it. Nor I'm that sure it should. Best practices...
    42 replies | 760 view(s)
  • docfuz's Avatar
    07-25-2018, 07:21 AM
    docfuz replied to a thread DNS rebinding attacks in Networking
    That's the point. We can find out, assume or mind not a bit if the DNS we're using is dropping that ball. Assuming might be dangerous, finding out...
    42 replies | 760 view(s)
  • docfuz's Avatar
    07-25-2018, 07:02 AM
    docfuz replied to a thread DNS rebinding attacks in Networking
    Forgot: as unknown-till-now.domain.controlled.by-attacker.net is a new vhost and DNS record just set up a few minutes ago to attack you, there will...
    42 replies | 760 view(s)
  • docfuz's Avatar
    07-25-2018, 07:00 AM
    docfuz replied to a thread DNS rebinding attacks in Networking
    They won't. But DNS is de-centralized. If you ask your ISP DNS servers for the IP address of www.google.com, chances are your ISP DNS will reply as...
    42 replies | 760 view(s)
  • docfuz's Avatar
    07-24-2018, 11:45 PM
    docfuz replied to a thread DNS rebinding attacks in Networking
    No. In the first session of the attack, the compromised client will make n queries for A records of xxxx.attacker.domain. Since the attacker controls...
    42 replies | 760 view(s)
  • docfuz's Avatar
    07-24-2018, 03:05 PM
    Before I run to RTFM myself - and going by memory - isn't tagging for local hosts and users only? Not remote ones. If it is so (and only if): - if...
    3 replies | 1096 view(s)
  • docfuz's Avatar
    07-24-2018, 02:48 PM
    docfuz replied to a thread DNS rebinding attacks in Networking
    Before somebody else asks: of course my network mitigation wouldn't stop the rebinding to give access to other internal devices in the same subnet....
    42 replies | 760 view(s)
  • docfuz's Avatar
    07-24-2018, 02:33 PM
    docfuz replied to a thread DNS rebinding attacks in Networking
    Yes, I understand Sonicwall got that and I clearly see what a DNS rebinding attack is. As I said, UT does not offer an active mitigation on this one....
    42 replies | 760 view(s)
  • docfuz's Avatar
    07-24-2018, 11:14 AM
    docfuz replied to a thread DNS rebinding attacks in Networking
    No. There's no active mitigation on this scenario. Until that (which could mean forever) I'd look at it from another point of view. It's been ages...
    42 replies | 760 view(s)
No More Results
About docfuz

Basic Information

About docfuz
URLs submitted:
0

Signature


Happily untangling the average household: 20-25 active devices, 13 racks, each with 3 - 8 apps, OpenVPN 1 in, IPSec 1 road-warrior, TunnelVPN 3 out, IPS on. Spice it up with VLANs and mix with tons of rules.

Statistics


Total Posts
Total Posts
170
Posts Per Day
0.33
General Information
Last Activity
08-14-2018 07:41 AM
Join Date
03-17-2017
Referrals
0

SEO by vBSEO 3.6.0 PL2