kea in opnsense and the tunnelvision vulnerability

Started by DEC670airp414user, May 13, 2024, 12:25:39 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions
May 13, 2024, 12:25:39 PM
in reading https://kea.readthedocs.io/en/latest/arm/dhcp4-srv.html 

classless-static-route 121 internal false false

does that mean out of box Kea is not vulnerable to the latest vulnerability?
May 13, 2024, 12:37:46 PM #1
This is not a vulnerability in any particular piece of DHCP server software. The attack is carried out by placing a rogue DHCP server directly on your LAN infrastructure.
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do. (Isaac Asimov)
Print
Go Up Pages1
User actions