[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Question re session hijacking in dual stack environments w/MacOS

Subject: Question re session hijacking in dual stack environments w/MacOS
From: dovid at telecurve.com (Dovid Bender)
Date: Sun, 27 Sep 2015 03:34:54 +0000

What about users on cgnat? I know isp's in the far east that only offer cgnat and it's pot lock how you go out.

------Original Message------
From: Michael Brown
Sender: NANOG
To: Brandon Butterworth
To: nanog at nanog.org
To: dhubbard at dino.hostasaurus.com
Subject: Re: Question re session hijacking in dual stack environments w/MacOS
Sent: Sep 26, 2015 23:19

?> Those site eventually learnt after much feedback not to assume on IPv4 address continuity.

I could envision that those checks might now be relaxed? to checking for address continuity in the same /24 for instance.

But when you're seeing the same session being used from two wildly different places (in this case, IPv4 and IPv6) at the SAME TIME, that does seem rather suspicious in the absence of other information.

M.

Regards,

Dovid

Follow-Ups:
- Question re session hijacking in dual stack environments w/MacOS
  - From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks at vt.edu)
- Question re session hijacking in dual stack environments w/MacOS
  - From: connorwilkins at ruggedinbox.com (Connor Wilkins)

Prev by Date: Recent trouble with QUIC?
Next by Date: Ear protection
Previous by thread: Question re session hijacking in dual stack environments w/MacOS
Next by thread: Question re session hijacking in dual stack environments w/MacOS
Index(es):
- Date
- Thread