Security

4987 readers

1 users here now

Confidentiality Integrity Availability

founded 4 years ago

MODERATORS

gary_host_laptop@lemmy.ml

Novel attack against virtually all VPN apps neuters their entire purpose (arstechnica.com)

submitted 5 months ago by cypherpunks@lemmy.ml to c/security@lemmy.ml

21 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] cypherpunks@lemmy.ml 0 points 5 months ago (1 children)

VPNs have several purposes but the big two are hiding your traffic from attackers on the local area network and concealing your location from sites that you visit.

If you're using a VPN on wifi at a cafe and anyone else at the cafe can run a rogue DHCP server (eg, with an app on their phone) and route all of your traffic through them instead of through the VPN, I think most VPN users would say the purpose of the VPN has been defeated.

[–] MotoAsh@lemmy.world 0 points 5 months ago (1 children)

If some random user is able to configure themselves as DHCP, NOONE should be connected to that insecure trash.

[–] cypherpunks@lemmy.ml 2 points 5 months ago (1 children)

The vast majority of LANs do not do anything to prevent rogue DHCP servers.

Just to be clear, a "DHCP server" is a piece of software which can run anywhere (including a phone). Eg, if your friend's phone has some malware and you let them use the wifi at your house, someone could be automatically doing this attack against your laptop while they're there.

[–] MotoAsh@lemmy.world 0 points 5 months ago* (last edited 5 months ago)

Seems like quite an amateur move to run a public network without filtering everyrhing, including dhcp. Again; insecure trash.

Yes, I know there is a lot of insecure trash out there. The commonality doesn't magically make it not insecure trash.