Re: The magical invisible bridge

From: Kurt Seifried (bugtraq@seifried.org)
Date: 02/14/02

• Previous message: dr.kaos: "Re: firewall question"
• In reply to: ph00dy: "The magical invisible bridge"
• Next in thread: Rafael Coninck Teigao: "Re: The magical invisible bridge"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: "Kurt Seifried" <bugtraq@seifried.org>
To: <pen-test@securityfocus.com>
Date: Thu, 14 Feb 2002 12:06:04 -0700

> Hello all,
> I am wondering if anyone has any wisdom/experience to offer on the
> topic of discovering and or auditing a linux/openbsd bridge? This
> particular bridge is configured with no IP addresses so I have no way to
> scan or connect to it and arp isn't even revealing it's exsistance. Any
> experience on this topic would be greatly appreciated.
>
> Danka,
> ph00dr0w w1ls0n..

If you break a machine "directly" connected to it (i.e. on same
hub/switch/cross over cable) you can at least send packets to it. If it is
properly setup however it will not respond, unless there is some buffer
overflow/etc in the tcp-ip stack (sort of like how people used to attack
network IDS systems, send packets that would be inspected by the IDS, thus
letting you attack it). Getting onto the admin network used to manage it
(i.e. a third "real" interface) would do the trick but chances are that
network is heavily protected.

Thus the beauty of a properly setup firewall (bridge or not). To bad more
aren't setup properly.

Kurt Seifried, kurt@seifried.org
A15B BEE5 B391 B9AD B0EF
AEB0 AD63 0B4E AD56 E574
http://seifried.org/security/
http://www.idefense.com/digest.html

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

---

• Previous message: dr.kaos: "Re: firewall question"
• In reply to: ph00dy: "The magical invisible bridge"
• Next in thread: Rafael Coninck Teigao: "Re: The magical invisible bridge"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: PROBLEM: Network sky2 Module ... one using X86_64 kernel version 2.6.23-rc5 on a 100Mbit network and one with i386 kernel version 2.6.23-rc6 on a 1Gbit network. ... 0cf8-0cff: PCI conf1 ... 00:00.0 Host bridge: Intel Corporation 82975X Memory Controller Hub ... Latency: 0, ... (Linux-Kernel) RE: [Bridge] [PATCH] macvlan: add tap device backend ... of operation (bridge, NAT, VEPA, etc). ... machine to use VEPA to access the network? ... With the macvlan based mode, you use 'ip link' to add a new tap ... (Linux-Kernel) Network Bridging Issues ... network bridge and now I am unable to connect to the wireless network by ... Laptop and it's Wireless Connection ... (microsoft.public.windowsxp.network_web) em, bge, network problems survey. ... Network hangs, server becomes unreachable, and after a few minutes, console doesn't respond anymore. ... pcib0: <ACPI Host-PCI bridge> port ... vendor = 'Advanced Micro Devices ' ... subclass = HOST-PCI ... (freebsd-stable) Re: [Bridge] [PATCH] macvlan: add tap device backend ... of operation (bridge, NAT, VEPA, etc). ... machine to use VEPA to access the network? ... With the macvlan based mode, you use 'ip link' to add a new tap ... (Linux-Kernel)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > pen-test  > 2002-02