|
|
|
|
|
|
by gruez
1642 days ago
|
|
|
> Presumably the primary rationale for a no-WebRTC policy is to avoid WebRTC leaks? I doubt corporate IT departments even care about "WebRTC leaks" (ie. your LAN IP getting leaked). Knowing that your computer is at 192.168.1.123 doesn't help attackers much. What's far more likely is that their networks only allow TCP connections, because that's all their firewalls/middleboxes/proxies support. |
|
|
One can reconstruct your subnet scheme with a handful internal IP addresses, allowing them to locate potential targets faster once they get into your network, making attacks more efficient ("oh, so these guys have some vulnerable clients in this /16, it's probably dev, and I see there's another /24, which looks like prod").