Post Mon Jun 08, 2009 10:06 pm

RFC1918 Caching Security Issues

http://www.sectheory.com/rfc1918-security-issues.htm

Preface: Intranets are intended to be secured from the outside by way of firewalls and other networking devices. Unfortunately, there has been a move towards non-routable address space as a method of protection, rather than other methods of protecting private IP space. This paper will outline a number of flaws that can be exploited by an adversary because of the use of well known non-routable IP address spaces.


Another GREAT paper by RSnake
CEH, OSCP, GPEN, GWAPT, GCIA
http://sector876.blogspot.com