On 24.07.19 11:13, Tomas Pospisek wrote: > So my interpretation of your initial bug report, that the VM would DoS > the host on which it was running via fast changing of IP addresses on > its interface was completely off the track? > > So what you wanted in fact wanted to say by "DoS'ing the server" was > that the VM sends huge amounts of DHCP requests to the DHCP server > (possibly also in addition depleting IP addresses from the DHCP server's > IP address pool) and *that* amounts to a DoS? Is my interpretation correct? > > If that's the case, then I'm reassinging this bug report to > isc-dhcp-client and merging it with the mentioned bug report #888209.
While I am not the original reporter of #932769, from the observation I made in my infrastructure: Yes, your interpretation is correct. The isc-dhcp-client goes bonkers and just floods DISCOVERs into the network, directly DECLINEing any IP it gets OFFERed from the DHCP server. (I've seen some 600,000 Requests over the span of 12 hours from only one system. Multiply this by several systems and you get the possible impact.) Grüße, Sven.
signature.asc
Description: OpenPGP digital signature
