I wonder if they have actually tested the last scenario: > Targeting a VM over t... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		tryauuum on June 29, 2021 \| parent \| context \| favorite \| on: Google Compute Engine VM takeover via DHCP flood I wonder if they have actually tested the last scenario: > Targeting a VM over the internet. This requires the firewall in front of the victim VM to be fully open. I mean, even if the firewall is non-existing, can you really carry a dhcp payload over the public internet? EDIT: still haven't read the whole thing, but looks like they did test it

pmontra on June 29, 2021 [–]

They did test that scenario

https://github.com/irsl/gcp-dhcp-takeover-code-exec#attack-3

tryauuum on June 29, 2021 | [–]

Google should probably block these kind of packets, anything from/to udp ports 67/68. Might be a little harsh, but secure

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact