[LACNIC/Seguridad] Virtual Private Network (VPN) traffic leakages in dual-stack hosts/ networks (Fwd: [OPSEC] I-D Action: draft-ietf-opsec-vpn-leakages-02.txt)

Fernando Gont fgont en si6networks.com
Jue Ago 22 21:45:04 BRT 2013


FYI: <http://tools.ietf.org/html/draft-ietf-opsec-vpn-leakages-02>

(Habemus VPN leakage por no sportarum el nuevo protocolum :-)  )


-------- Original Message --------
From: internet-drafts en ietf.org
To: i-d-announce en ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 4.70.p1
Message-ID: <20130823002655.23309.76395.idtracker en ietfa.amsl.com>
Date: Thu, 22 Aug 2013 17:26:55 -0700
Cc: opsec en ietf.org
Subject: [OPSEC] I-D Action: draft-ietf-opsec-vpn-leakages-02.txt
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: opsec-bounces en ietf.org
Errors-To: opsec-bounces en ietf.org


A New Internet-Draft is available from the on-line Internet-Drafts
directories.
 This draft is a work item of the Operational Security Capabilities for
IP Network Infrastructure Working Group of the IETF.

	Title           : Virtual Private Network (VPN) traffic leakages in
dual-stack hosts/ networks
	Author(s)       : Fernando Gont
	Filename        : draft-ietf-opsec-vpn-leakages-02.txt
	Pages           : 15
	Date            : 2013-08-22

Abstract:
   The subtle way in which the IPv6 and IPv4 protocols co-exist in
   typical networks, together with the lack of proper IPv6 support in
   popular Virtual Private Network (VPN) products, may inadvertently
   result in VPN traffic leaks.  That is, traffic meant to be
   transferred over a VPN connection may leak out of such connection and
   be transferred in the clear from the local network to the final
   destination.  This document discusses some scenarios in which such
   VPN leakages may occur, either as a side effect of enabling IPv6 on a
   local network, or as a result of a deliberate attack from a local
   attacker.  Additionally, it discusses possible mitigations for the
   aforementioned issue.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-opsec-vpn-leakages

There's also a htmlized version available at:
http://tools.ietf.org/html/draft-ietf-opsec-vpn-leakages-02

A diff from the previous version is available at:
http://www.ietf.org/rfcdiff?url2=draft-ietf-opsec-vpn-leakages-02


Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/

_______________________________________________
OPSEC mailing list
OPSEC en ietf.org
https://www.ietf.org/mailman/listinfo/opsec






Más información sobre la lista de distribución Seguridad