On Wed, Apr 04, 2018 at 03:35:03PM +0200, Michal Suchánek wrote:
What are you talking about? This is not about connecting to multiple networks. This is about not leaking information between different networks.
net1 +--+ net2 | |PC| | +-----+--+----+ if1 if2 ip1 ip2
When I connect my PC to two networks I have not subscribed to connecting if2 to net1 and people in net1 should not see the ip2.
Linux does show the ip2 the other devices connected to net1.
This is broken and has been the default behavior in Linux for ages. These days with half dozen firewall types supported in the kernel you can probably craft a brittle firewalling rule to prevent this.
However, this should not happen in the first place. As people these days still abuse this behaviour to access their WiFi IP over wired Ethernet it seems it has not changed - the bug is still there.
It's not a "bug", it's design decision ("weak host model" or "weak ES model" as described in RFC 1122). If you prefer strong host model, it's not that hard to emulate it e.g. with netfilter rules. Or perhaps using network namespaces might be considered more cool these days. Michal Kubeček -- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-factory+owner@opensuse.org