From: jfj <jfj@freemail.gr>
To: linux-ppp@vger.kernel.org
Subject: pppd security
Date: Mon, 18 Sep 2006 15:31:26 +0000 [thread overview]
Message-ID: <450EBBCE.5030204@freemail.gr> (raw)
Hi.
I don't know much about pppd so this may be completely
wrong.
Suppose this setup:
I have a custom kernel which "secures" sockets. That is,
any program that will try to use a socket without "unlocking"
it first, will get some ERROR. This way, only trusted
programs will be able to use sockets and connect to the
net.
So, sockets are secured at the TCP/IP layers.
My question now is, if it is possible to attack this by
sending data directly to the PPP layer. Can one open
/dev/ppp, construct a UDP packet, encapsulate this into
a PPP packet, write it to some /dev/ppp device and reach
some internet host?
Thanks,
jerald
next reply other threads:[~2006-09-18 15:31 UTC|newest]
Thread overview: 7+ messages / expand[flat|nested] mbox.gz Atom feed top
2006-09-18 15:31 jfj [this message]
2006-09-18 16:10 ` pppd security James Carlson
2006-09-18 19:39 ` jfj
2006-09-18 19:48 ` James Carlson
2006-09-18 20:29 ` jfj
2006-09-18 20:46 ` James Carlson
2006-09-19 12:07 ` jfj
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=450EBBCE.5030204@freemail.gr \
--to=jfj@freemail.gr \
--cc=linux-ppp@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).