DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD Security

OpenBSD Security Functionally paranoid!

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 8th August 2019
calanon calanon is offline
Port Guard
 
Join Date: Jul 2019
Posts: 38
Default Hijacking connections

Someone suggested to me that when using authpf and the pf to access a network segment, what prevents a would be attacker accessing your workstation and opening another console process to access the restricted network through the already authenticated ssh connection.

Are there ways to prevent such a thing or to make it hard for such a scenario ?
Reply With Quote
  #2   (View Single Post)  
Old 8th August 2019
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 6,804
Default

Quote:
...attacker accessing your workstation...
Nothing at all. Any packet filter or other network protections needed to prevent misuse sourced from the authenticated device is the responsibility of the network admin.

Consider: all authpf(8) does when a connection is authenticated is:
  1. Load admin-provisioned filter rules into PF at the admin-specified anchor point.
  2. Permit the admin to use two PF macros in the rules: $user_ip, the ip address of the authenticated and connected device, and $user_id, the user name connected to the authpf(8) shell on the gateway router.
The rules remain in effect at the anchor point until the ssh(1) session is terminated.

Network protections the astute admin will consider include packet filtering, stateful processing, authentication and authorization systems, and encrypted traffic.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
DNS hijacking campaign called Sea Turtle e1-531g News 0 22nd April 2019 02:39 PM
preventing connections from being cut? daemonfowl OpenBSD Security 6 24th January 2012 11:43 PM
need troubleshooting tip for vpn connections badguy OpenBSD Security 19 10th November 2010 02:53 PM
Serial connections JMJ_coder General software and network 9 25th July 2008 03:28 PM
More tcp connections tad1214 FreeBSD General 8 5th June 2008 03:05 PM


All times are GMT. The time now is 01:46 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2019, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick