Re: IP Spoofing/Masquarading

[Gerardo Castillo Alvarado <gecastillo () edelca com ve>]

Erik Soosalu escribió:
> Routers by default are programmed to forward *all* traffic. 
that's right... it would be better: routers should not be programmed to
forward traffic to these address ranges (RFC1918) outside of local
organizations.

>  They tend to only look at the destination addresses only and forward the packet to the interface with a matching 
> route.
>
> You then use an access control list to block private network traffic, which is of course meaningless if the user 
> spoofs with a publically routable address.  But then again, that is what Unicast Reverse Path Forwading helps deal 
> with.
>   
I agree
> Thanks,
> Erik
>
>
> -----Original Message-----
> From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Gerardo Castillo Alvarado
> Sent: Wednesday, September 09, 2009 10:10 AM
> Cc: pen-test () securityfocus com; security-basics
> Subject: Re: IP Spoofing/Masquarading
>
> M.D.Mufambisi escribió:
>   
> > However, when this is done across the internet, with a private IP
> > address in its source field, how does this packet get routed through
> > the internet?
> >   
> >     
> Supposedly, routers are not programmed to forward traffic with these
> address ranges (FRC1918) outside of local organizations; nevertheless,
> all border routers should drop all incoming packet somewhat quirky...
>
> On the other hand, there are preceding to intercept internet traffic
> though with other techniques [1].
>
> [1] http://www.wired.com/threatlevel/2008/08/revealed-the-in/
>
> best regards!
>
> ------------------------------------------------------------------------
> This list is sponsored by: Information Assurance Certification Review Board
>
> Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
> and CEPT certs require a full practical examination in order to become certified.
>
> http://www.iacertification.org
> ------------------------------------------------------------------------
>
>
>
>   


------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------