* Re: Re: ipv4options still broken (posted prev w/ no reply)...
@ 2006-05-30 23:59 tubbs
0 siblings, 0 replies; only message in thread
From: tubbs @ 2006-05-30 23:59 UTC (permalink / raw)
To: kaber; +Cc: netfilter-devel
D-link and netgear had issues not too long ago for one. Presumptions are the
root of stupidity, any goon can package something that forgets to strip the
options, just as easily as someone can package something that falsly detects
them being used via a netfilter module. There's tools out there that scan for
systems that support/forward [ls]srr.
-Cody Tubbs
>
> Cody Tubbs wrote:
> > I'm not going to indulge in 101 stuff regarding loose/strict source
> > attacks, google enjoys 101 much more.
> >
> > http://www.spirit.com/Network/net0300.html (section: Source Route)
> >
> > http://seclists.org/lists/pen-test/2003/May/0023.html
>
> Which system accepts source route options nowadays? You most likely
> have more serious problems than this.
>
>
____________________________________________
E-Mail sent with Broadway Internet Web Mail.
<a href="http://www.broadwayinternet.com/webadmin">http://www.BroadwayInternet.com
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2006-05-30 23:59 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2006-05-30 23:59 Re: ipv4options still broken (posted prev w/ no reply) tubbs
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.