Skip to content
Commit 70785899 authored by Yu Watanabe's avatar Yu Watanabe Committed by Zbigniew Jędrzejewski-Szmek
Browse files

sd-dhcp-client: tentatively ignore FORCERENEW command 

This makes DHCP client ignore FORCERENEW requests, as unauthenticated
FORCERENEW requests causes a security issue (TALOS-2020-1142, CVE-2020-13529).

Let's re-enable this after RFC3118 (Authentication for DHCP Messages)
and/or RFC6704 (Forcerenew Nonce Authentication) are implemented.

Fixes #16774.

(cherry picked from commit 38e980a6)
(cherry picked from commit 3ec1234d)
(cherry picked from commit f53d6101)
parent 054f8532
Hide whitespace changes
Inline Side-by-side
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment