[Olsr-dev] ARP prevention!

Andrea Di Pasquale (spam-protected)
Thu Aug 18 00:29:22 CEST 2011


I do not want to do a plugin...
This is the logic:

Ethernet and wireless are broadcast technology =>
=> Olsrd uses this technology =>
=> You can use any technology to L3 point-to-point, point-to-multipoint, multipoint =>
=> Olsrd to L3 multipoint, indirectly uses ARP to L2 for each two host (1 segment), or n host (n / 2 segments) in multipoint

This implies that olsrd is liable to attack Man In The Middle with ARP spoofing in every segment, every two hosts or all segments between hosts.

Let me give two examples:

1. Spoof two nodes, multi-hop communications between them pass by me
2. Spoof all nodes, all multi-hop communications between them pass from me.

I do not want to do a plugin.
I would only suggest that there is a solution to these problems and that it contributes much to olsrd seen that indirectly uses ARP.


Andrea.

Il giorno 17/ago/2011, alle ore 22:41, Ferry Huberts ha scritto:

> On 08/17/2011 10:10 PM, Andrea Di Pasquale wrote:
>> I think that a network must be secure, from any point of view.
>> My propose is to have a integrity secure from any attacks for a protocol
>> L3 with L2 together. (-:
> 
> network security must be dealt with at the proper network layer.
> olsr is a layer 3 protocol, arp is a layer 1.5 protocol (between layer 1
> and 2).
> 
> It is against proper architecture to let a lower layer use services from
> a higher layer, these layers are defined this way for a very good reason.
> 
> olsr deals with the IP level and doesn't concern itself with arp at all
> and for a very good reason.
> 
> arp is a single segment LAN protocol.
> IP is a multi-network protocol.
> 
> 
> (arp) security is good but you should solve it differently.
> 
> olsr is not the place to do this.
> 
> 
> -- 
> Ferry Huberts





More information about the Olsr-dev mailing list