[Freifunk-Bonn] Fwd: [Freifunk Mainz] Fwd: [B.A.T.M.A.N.] The Joker attacks

krugar freifunk at krugar.de
Di Mai 19 17:31:25 CEST 2015 

<3 SEEMOO Lab


-------- Forwarded Message --------
Subject: [Freifunk Mainz] Fwd: [B.A.T.M.A.N.] The Joker attacks
Date: Tue, 19 May 2015 16:49:32 +0200
From: Julius Lebert <j.lebert at gmx.de>
Reply-To: Mailingliste für Freifunk-Aktivitäten in und um Mainz
<mainz at freifunk.net>
To: Mailingliste für Freifunk-Aktivitäten in und um Mainz
<mainz at freifunk.net>

fyi:


-------- Weitergeleitete Nachricht --------
Betreff: [B.A.T.M.A.N.] The Joker attacks
Datum: Tue, 19 May 2015 15:14:04 +0200
Von: Simon Wunderlich <sw at simonwunderlich.de>
Antwort an: The list for a Better Approach To Mobile Ad-hoc Networking
<b.a.t.m.a.n at lists.open-mesh.org>
An: b.a.t.m.a.n at lists.open-mesh.org

After laying low for quite some time, the Joker finally makes its
appearance!
"The Joker" - a penetration testing and research tool to test security
aspects
of batman-adv networks - was developed by security researchers Pedro Larbig
and Alexander Oberle at TU Darmstadt (Germany), and we finally got
permission
to release the source code to the public.

The tool currently supports the following tests:

 * Peer/Route flooding: flood fake OGMs
 * Blackhole: announce to neighbors that the best route is via the attacker
node
 * Loop Forming: create local loops on multi-hop paths
 * Fuzzing: modify packets randomly to create malformed packets

Pedro & Alexander developed the tool in order to facilitate their mesh
network
security research. Their work focuses on B.A.T.M.A.N. Advanced version
2011.1.0 and concluded that this version was performing pretty well in the
Peer/Route and fuzzing tests. Albeit not being able to prevent maliciously
provoked loops/blackholes entirely, B.A.T.M.A.N. Advanced did recover
quickly
when needed, according to their study.

To instigate further interest in mesh network security the 'Joker' code
base
is being published alongside this announcement. Hopefully, the Joker
inspires
security researchers as well as developers to investigate and fix issues
in the
B.A.T.M.A.N. protocol and/or implementation. We will also accept
contributions
for the Joker through the usual channels. Note that the tool does currently
not work with the more recent versions 2013.4.0 or 2014.4.0 and later -
patches are welcome.

Happy routing,

The B.A.T.M.A.N. team

Mehr Informationen über die Mailingliste Freifunk-Bonn