Comment on Novel attack against virtually all VPN apps neuters their entire purpose

<- View Parent
NeatNit@discuss.tchncs.de ⁨6⁩ ⁨months⁩ ago

This technique can also be used against an already established VPN connection once the VPN user’s host needs to renew a lease from our DHCP server. We can artificially create that scenario by setting a short lease time in the DHCP lease, so the user updates their routing table more frequently. In addition, the VPN control channel is still intact because it already uses the physical interface for its communication. In our testing, the VPN always continued to report as connected, and the kill switch was never engaged to drop our VPN connection.

Sounds to me like it totally works even after the tunnel has started.

source
Sort:hotnewtop