Routing – WindowsTechs.com

What to consider when routing priviledged ports to sandboxed services? net.ipv4.conf.eth0.route_localnet=1 vs CAP_NET_BIND_SERVICE

Posted on September 2, 2024 by gcb

The use case is: running isolated services, either as a hardened systemd unit file — with close to a zero score on systemd-analyze security, or a linux container.
Both of those will place services listening on localnet (127.0.0.0/8-ish) o… Continue reading What to consider when routing priviledged ports to sandboxed services? net.ipv4.conf.eth0.route_localnet=1 vs CAP_NET_BIND_SERVICE→

Why is IPsec transport mode "vulnerable" for not having integrity of variable fields? Why is this so important?

Posted on May 16, 2024 by AllExJ

With IPsec transport mode we CAN’T have integrity of variable fields (eg TTL and checksum).
Why is it a problem? Is it? What could be the attack?
I think TTL expire or checksum modification (so both DoS), but I mean, if an attacker can mod… Continue reading Why is IPsec transport mode "vulnerable" for not having integrity of variable fields? Why is this so important?→

Proper Routing Makes for Many Happy Return Paths

Posted on March 18, 2024 by Dan Maloney

Here’s a question for you: when your PCB has a ground plane layer, where do return signals flow? It seems like a trick question, but as [Kristof Mulier] explains, there’s …read more Continue reading Proper Routing Makes for Many Happy Return Paths→

Using Android Wireless Hotspot while connected to Hotel internet via VPN

Posted on November 18, 2023 by stochastic

I want to make sure I understand the security implications of this scenario:

I am staying in a hotel.
I have a VPN on my android phone.
I connect to the hotel’s unencrypted WiFi network with the phone.
I start a Wifi Hotspot on the phone…. Continue reading Using Android Wireless Hotspot while connected to Hotel internet via VPN→

Is IP routing subject to data transfer laws? [migrated]

Posted on November 14, 2023 by Xophmeister

Some regions and territories have data sovereignty and localisation laws that prevent, for example, personal data from being transferred outside of that jurisdiction. Do such laws, if they even discuss this explicitly, refer only to the fi… Continue reading Is IP routing subject to data transfer laws? [migrated]→

Not the usual routing on Android

Posted on September 3, 2023 by Frenc Olesov

I recently mapped routing output through iptables using root.
Question:
How can we analyze the iptables routing to suggest that there was an intrusion that was able to change the iptables kernel configuration?
My knowledge of iptables is … Continue reading Not the usual routing on Android→

PCIe For Hackers: Our M.2 Card Is Done

Posted on July 25, 2023 by Arya Voronova

We’ve started designing a PCIe card last week, an adapter from M.2 E-key to E-key, that adds an extra link to the E-key slot it carries – useful for fully …read more Continue reading PCIe For Hackers: Our M.2 Card Is Done→

Can my employer detect that I am using a torrent client on my home pc while teleworking? [duplicate]

Posted on April 21, 2023 by Observing Man

I am working from home with a ‘work’ laptop, connected through a VPN client to my company and also to the customer networks.
I also have my ‘home pc’ on the same home network.
Both computers are connected to the same home router.
Can the c… Continue reading Can my employer detect that I am using a torrent client on my home pc while teleworking? [duplicate]→

How do I reach the "remote" web app using IP routing? [closed]

Posted on December 26, 2022 by Sir Muffington

I have a PCAP basically stating two things:

An ARP request who has 192.168.a.b? Tell 192.168.b.c
An ARP answer with the MAC address follows of course.

The following requests all access an web app, which seems to be .php based (I can judg… Continue reading How do I reach the "remote" web app using IP routing? [closed]→

What is the better tunnel endpoint?

Posted on December 4, 2022 by Watchdogs1499

I’m trying to understand the consequences or implications of setting up tunneling endpoints for the below topology. The tunneling may be used for anything (encryption, VPNs, etc.) assuming the general case.
Assuming our client is at NODE 4… Continue reading What is the better tunnel endpoint?→