Firewall Wizards mailing list archives
RE: Firewall comparison in Data Communications
From: Alexander Schreiber <Alexander.Schreiber () informatik tu-chemnitz de>
Date: Wed, 2 Jun 1999 12:41:00 +0200 (MET DST)
On Mon, 31 May 1999, Brian Steele wrote:
<newbie-mode>What's a "source-routed packet"? And what danger does it pose to a Firewall?</newbie-mode>
It's a packet that contains a list of nodes to route it through. If you know enough about the network structure behind a gateway machine (simple router, firewall, ...) that does _not_ drop such packets on the floor you can happily access machines that you should not be able to. Every at least partly sane network admin therefore has his systems configured to drop this kind of packet right on the floor - and probably report them as _very_ lame attack attempt. Regards, Alex. -- ------------------------------------------------------------------------------ EMail : als () informatik tu-chemnitz de | WWW : http://www.tu-chemnitz.de/~als If privacy is outlawed, only outlaws will have | Ceterum censeo Parva Mollia privacy. (Philip Zimmerman, author of PGP) | esse delendam.
Current thread:
- Re: Firewall comparison in Data Communications Matt Curtin (Jun 01)
- <Possible follow-ups>
- RE: Firewall comparison in Data Communications Brian Steele (Jun 01)
- RE: Firewall comparison in Data Communications Ray Hooker (Jun 02)
- RE: Firewall comparison in Data Communications David T. Smith (Jun 03)
- RE: Firewall comparison in Data Communications Alexander Schreiber (Jun 03)
- Re: Firewall comparison in Data Communications Chris Brenton (Jun 03)
- Re: Firewall comparison in Data Communications Ge' Weijers (Jun 02)
- RE: Firewall comparison in Data Communications David Newman (Jun 02)
- RE: Firewall comparison in Data Communications Kevin Steves (Jun 14)
- RE: Firewall comparison in Data Communications W J La Cholter (Jun 03)
- Re: Firewall comparison in Data Communications Don Kendrick (Jun 03)
- RE: Firewall comparison in Data Communications Russ (Jun 03)
- RE: Firewall comparison in Data Communications csingletary (Jun 03)
- RE: Firewall comparison in Data Communications Rob Polansky (Jun 04)
- Re: Firewall comparison in Data Communications Steven M. Bellovin (Jun 03)
(Thread continues...)