Dynamic Adresses

Jason A. Donenfeld Jason at zx2c4.com
Wed Nov 29 14:40:25 CET 2017

On Wed, Nov 29, 2017 at 2:35 PM, Mytril <mytril42 at posteo.de> wrote:
> Yes i have written a similar script for the german ubuntuusers.de wiki.

Care to share?

> If Bob and Alice are two Clients which have an whireguard vpn to each
> other. Eve could steal the private key of bob and the public key of
> alice and wait till bob has a disconnect and get a new ip. Than eve
> could register this ip and have 30 seconds or so access to the private
> network of alice.

If Eve has Bob's private key, he will always be able to impersonate
Bob to anybody. This is by design and not a security vulnerability.
Your private key is your identity. Just like SSH and a variety of
other well known protocols.

More information about the WireGuard mailing list