Topic: External Hacking of OpenWRT using DNS Rebind

The content of this topic has been archived on 18 Apr 2018. There are no obvious gaps in this topic, but there may still be some posts missing at the end.

Page 1 of 1

Post #1

pumbaa2

11 Feb 2015, 10:26

I just wanted to mention this because both OpenWRT and DD-WRT got mentioned in his presentation...

https://www.youtube.com/watch?v=0duYxPIx8gU

-RayRay-

Post #2

jow

11 Feb 2015, 12:44

Neither at the time of this talk nor anytime after was OpenWrt vulnerable to this rebind attacks. LuCI already contained CSRF countermeasures back then and dnsmasq rebind protection was enabled as additional measure shortly after.

Post #3

lalamper

15 Feb 2015, 01:35

Does this mean that we are in safe?

The discussion might have continued from here.

Page 1 of 1