[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-Disclosure] ICMP Covert channels question

To: <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: RE: [Full-Disclosure] ICMP Covert channels question
From: <lists-security@xxxxxxxxxxxxxx>
Date: Sat, 29 Jan 2005 11:18:15 -0800

"As an attacker, I would not design an exploit that *depended* upon private
addresses being routed external to the victim's router unless I first
verified that they were.

Paul Schmehl (pauls@xxxxxxxxxxxx)"

But Paul, you know that crackers rely on the misconfigured, unpatched masses
to exploit, not the people with properly configured routers and systems.
While you and I will implement ingress and egress anti-spoofing rules, in
the field I see plenty of misconfigured routers that don't.  

- Bryan K. Watson
- bwatson@xxxxxxxxxxxxxx

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- RE: [Full-Disclosure] ICMP Covert channels question
  - From: Paul Schmehl

Prev by Date: RE: [Full-Disclosure] ICMP Covert channels question
Next by Date: [Full-Disclosure] Re: War-ftpd bug small addition
Previous by thread: RE: [Full-Disclosure] ICMP Covert channels question
Next by thread: Re: [Full-Disclosure] ICMP Covert channels question
Index(es):
- Date
- Thread