Considering how many office networks use 192.168.*.* or 10.*.*.*, I'm not sure t... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		tracker1 on March 11, 2019 \| parent \| context \| favorite \| on: Using Let's Encrypt for Internal Servers (2018) Considering how many office networks use 192.168.. or 10..., I'm not sure that in practice you're REALLY* leaking all that much... I mean it's a little bit of a hint, but if you can control a bridged device with internal network access, you'll probably get the same info (roughly) from a port scan. The "breach of info" is overblown imho.

pawal on March 12, 2019 [–]

In practice internal only DNS names will always leak to external resolvers in one way or another. Pretending otherwise is very naive.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact