[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] The best hacker ever !

On Mon, 2 May 2005, Zuxy Haiduc wrote:

While most people know better than attacking 127.0.0.1, it's important
to note that in some operating systems (Windows, and a few others, but
normally not *nix), anything in 127.* is loopback.

Its a lot easier to trick someone into attacking, say, 127.36.120.67,
than 127.0.0.1.

Just a thought.

127.36.120.67 works under Linux as well (tested on Ubuntu, Debian, Redhat and Gentoo with 2.2-2.6 kernels).

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/