Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Removing ping/icmp from a network

From: "Ramsdell, Scott" <Scott.Ramsdell () cellnethunt com>
Date: Thu, 27 Mar 2008 10:19:34 -0400
You're welcome ;)

I'm happy to limit your ability to issue ICMP redirects if you happen to
find yourself inside my LAN, where you're absolutely not authorized to
be.

My users are unaffected by my "breaking IP", and are quite obliviously
utilizing the intended routes.


Kind Regards,

Scott Ramsdell


-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
On Behalf Of Ansgar -59cobalt- Wiechers
Sent: Wednesday, March 26, 2008 1:45 PM
To: security-basics () securityfocus com
Subject: Re: Removing ping/icmp from a network

On 2008-03-26 Ramsdell, Scott wrote:

Even on my trusted LAN, I only allow echo request/echo reply.


So you are one of the guys breaking IP? Thank you *so* much for that ...

*shakes head*

Ansgar Wiechers
-- 
"All vulnerabilities deserve a public fear period prior to patches
becoming available."
--Jason Coombs on Bugtraq
Previous By Date Next
Previous By Thread Next

Current thread: