Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Long connections do not ignore broadcast #1212

Open
eldraco opened this issue Feb 1, 2025 · 0 comments
Open

Long connections do not ignore broadcast #1212

eldraco opened this issue Feb 1, 2025 · 0 comments
Assignees
@AlyaGomaa
Labels
Bug Difficulty: Beginners Stuff that you can do with skills for starters

Comments

@eldraco
Copy link
Collaborator

eldraco commented Feb 1, 2025

Describe the bug
Slips do not ignore the long connection evidence when it is done to broadcast address.

Long Connection. Connection from 192.168.1.103 to destination address: 255.255.255.255 took 523 mins threat level: low. Long Connection. Connection from 192.168.1.103 to destination address: 192.168.1.255 took 523 mins threat level: low.

The example packets are

1970-01-01 17:34:00.162289  IP 192.168.1.103.17500 > 192.168.1.255.17500: UDP, length 145
[email protected]\D\....{"host_int": 89127250478976913110313999112743054815, "version": [2, 0], "displayname": "", "port": 17500, "namespaces": [2169424000, 1091215175]}
1970-01-01 17:34:00.162320  IP 192.168.1.103.17500 > 255.255.255.255.17500: UDP, length 145
[email protected]\D\...Y{"host_int": 89127250478976913110313999112743054815, "version": [2, 0], "displayname": "", "port": 17500, "namespaces": [2169424000, 1091215175]}
1970-01-01 17:34:30.217855  IP 192.168.1.103.17500 > 255.255.255.255.17500: UDP, length 145
[email protected]\D\...Y{"host_int": 89127250478976913110313999112743054815, "version": [2, 0], "displayname": "", "port": 17500, "namespaces": [2169424000, 1091215175]}
1970-01-01 17:34:30.220239  IP 192.168.1.103.17500 > 192.168.1.255.17500: UDP, length 145
[email protected]\D\....{"host_int": 89127250478976913110313999112743054815, "version": [2, 0], "displayname": "", "port": 17500, "namespaces": [2169424000, 1091215175]}
1970-01-01 17:35:00.267902  IP 192.168.1.103.17500 > 255.255.255.255.17500: UDP, length 145
[email protected]\D\...Y{"host_int": 89127250478976913110313999112743054815, "version": [2, 0], "displayname": "", "port": 17500, "namespaces": [2169424000, 1091215175]}
1970-01-01 17:35:00.278883  IP 192.168.1.103.17500 > 192.168.1.255.17500: UDP, length 145
E... [email protected]\D\....{"host_int": 89127250478976913110313999112743054815, "version": [2, 0], "displayname": "", "port": 17500, "namespaces": [2169424000, 1091215175]}
1970-01-01 17:35:30.313564  IP 192.168.1.103.17500 > 192.168.1.255.17500: UDP, length 145
[email protected]\D\....{"host_int": 89127250478976913110313999112743054815, "version": [2, 0], "displayname": "", "port": 17500, "namespaces": [2169424000, 1091215175]}
1970-01-01 17:35:30.313595  IP 192.168.1.103.17500 > 255.255.255.255.17500: UDP, length 145
[email protected]\D\...Y{"host_int": 89127250478976913110313999112743054815, "version": [2, 0], "displayname": "", "port": 17500, "namespaces": [2169424000, 1091215175]}
1970-01-01 17:36:00.370814  IP 192.168.1.103.17500 > 255.255.255.255.17500: UDP, length 145
[email protected]\D\...Y{"host_int": 89127250478976913110313999112743054815, "version": [2, 0], "displayname": "", "port": 17500, "namespaces": [2169424000, 1091215175]}
1970-01-01 17:36:00.373371  IP 192.168.1.103.17500 > 192.168.1.255.17500: UDP, length 145
E...#...@..     ...g....D\D\....{"host_int": 89127250478976913110313999112743054815, "version": [2, 0], "displayname": "", "port": 17500, "namespaces": [2169424000, 1091215175]}
1970-01-01 17:36:30.413665  IP 192.168.1.103.17500 > 255.255.255.255.17500: UDP, length 145
[email protected]\D\...Y{"host_int": 89127250478976913110313999112743054815, "version": [2, 0], "displayname": "", "port": 17500, "namespaces": [2169424000, 1091215175]}

To Reproduce
Steps to reproduce the behavior:

  1. Go to branch develop
  2. Run with appropriate input

Expected behavior
To ignore broadcast in long connections, specially in UDP.

Branch
develop

Environment (please complete the following information):

  • OS: Linux
  • Version 6.8.0-39-generic #39-Ubuntu
  • Python versionPython 3.10.12
  • Are you running slips in docker or locally? no
  • Commit hash: 7b847cd
@github-project-automation github-project-automation bot moved this to Todo in Slips Feb 1, 2025
@eldraco eldraco added Bug Difficulty: Beginners Stuff that you can do with skills for starters labels Feb 1, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@AlyaGomaa AlyaGomaa

Labels
Bug Difficulty: Beginners Stuff that you can do with skills for starters
Projects
Slips
Status: Todo
Milestone
No milestone
Development

No branches or pull requests
2 participants
@eldraco @AlyaGomaa