Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Reduce the risk of misidentification of incoming traffic by verifying destination hostname when resolving incoming internet traffic; Use /proc/<pid>/root/etc/hostname for IP to hostname resolution as an alternative to /proc/<pid>/environ #244

Merged
merged 6 commits into from
Oct 13, 2024
Merged

Reduce the risk of misidentification of incoming traffic by verifying destination hostname when resolving incoming internet traffic; Use /proc/<pid>/root/etc/hostname for IP to hostname resolution as an alternative to /proc/<pid>/environ #244

merged 6 commits into from
Oct 13, 2024

Conversation

omris94
Copy link
Contributor

@omris94 omris94 commented Oct 1, 2024
edited
Loading

Description

  1. Reduce the risk of misidentification of incoming traffic by verifying destination hostname when resolving incoming internet traffic.

  2. Improve IP to hostname procfs resolver by using /proc/<pid>/root/etc/hostname as an alternative to /proc/<pid>/environ

Testing

Describe how this can be tested by reviewers. Be specific about anything not tested and reasons why. If this library has unit and/or integration testing, tests should be added for new functionality and existing tests should complete without errors.

Please include any manual steps for testing end-to-end or functionality not covered by unit/integration tests.

Also include details of the environment this PR was developed in (language/platform/browser version).

  • This change adds test coverage for new/changed/fixed functionality

Checklist

  • I have added documentation for new/changed functionality in this PR and in github.com/otterize/docs

@omris94 omris94 marked this pull request as ready for review October 10, 2024 10:40
@omris94 omris94 changed the title Verify destination hostname when resolving incoming internet traffic Verify destination hostname when resolving incoming internet traffic; Use /proc/<pid>/root/etc/hostname for ip to hostname resolution as an alternative to /proc/<pid>/environ Oct 10, 2024
@omris94 omris94 changed the title Verify destination hostname when resolving incoming internet traffic; Use /proc/<pid>/root/etc/hostname for ip to hostname resolution as an alternative to /proc/<pid>/environ Reduce the risk for misidentification of incoming traffic by verifying destination hostname when resolving incoming internet traffic; Use /proc/<pid>/root/etc/hostname for ip to hostname resolution as an alternative to /proc/<pid>/environ Oct 10, 2024
@omris94 omris94 changed the title Reduce the risk for misidentification of incoming traffic by verifying destination hostname when resolving incoming internet traffic; Use /proc/<pid>/root/etc/hostname for ip to hostname resolution as an alternative to /proc/<pid>/environ Reduce the risk of misidentification of incoming traffic by verifying destination hostname when resolving incoming internet traffic; Use /proc/<pid>/root/etc/hostname for IP to hostname resolution as an alternative to /proc/<pid>/environ Oct 10, 2024
amitlicht
amitlicht approved these changes Oct 12, 2024
View reviewed changes
src/sniffer/pkg/config/config.go Show resolved Hide resolved
@otterize otterize deleted a comment from omris94 Oct 13, 2024
@omris94 omris94 merged commit 153f669 into main Oct 13, 2024
21 checks passed
@omris94 omris94 deleted the omris/verify-incoming-traffic-targets branch October 13, 2024 09:10
@github-actions github-actions bot locked and limited conversation to collaborators Oct 13, 2024
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@amitlicht amitlicht Awaiting requested review from amitlicht

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@omris94 @amitlicht