Comment 6 for bug 1558658
Revision history for this message
| Kevin Benton (kevinbenton) wrote Re: Security Groups do not prevent MAC and/or IPv4 spoofing in DHCP requests | #6 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
35a32c5
(Get the code!)
I agree that this is something we need to address. I'm fine with it being opened to the public or being fixed first.
@Dustin,
Can you confirm that the attached patch fixes the mac spoofing issue? (Note that there are two patches in there, one for Linux Bridge and one for OVS)
I didn't do anything about the DHCP request source IP restriction in this patch because that one just seems to be a way to spam some DHCP requests for an incorrect address. Correct me if I'm wrong, but that doesn't pose any security issue (other than log noise), right?