13Dec/030
Macs aren’t the only ones vulnerable
I wonder if PC Magazine knows it, after their Mac-bashing article ? By the way, this article was from Ziff Davis, a VERY PC-biased media company. Either way, that seems to be the case according to RFC 2131, better known as DHCP.
After reading this weblog, it appears that any machine that connects to a rouge DHCP can be 0wn3d.
Here's an interesting quote from the article:
The only difference to Apple is that they also use DHCP for LDAP discovery. But even if all you use DHCP for is IPv4 addressing, and DNS, you're still at risk on a rogue server, because that server now has your IP address, and your MAC address, which can be of great convenience to a cracker.
A nice rebuttal is at The Mac Observer. Ready to eat your words, Mr. Ulanoff?