oss-sec mailing list archives
Re: Attack on badly configured Netfilter-based firewalls
From: yersinia <yersinia.spiros () gmail com>
Date: Mon, 27 Feb 2012 12:42:35 +0100
On Sun, Feb 26, 2012 at 11:37 PM, Eric Leblond <eric () regit org> wrote:
Hello, This is a correct definition of the condition on the network required for the attack. Hi. If i have undestood correcly, setting arp_announce and arp_ignore as
below should be fix the problem you have described, isn't it ? net.ipv4.conf.all.arp_announce=1 net.ipv4.conf.all.arp_ignore=2 We set so by default in our env by policy. Thanks and Regards Elia
Current thread:
- Re: Attack on badly configured Netfilter-based firewalls, (continued)
- Re: Attack on badly configured Netfilter-based firewalls ArkanoiD (Mar 09)
- Re: Attack on badly configured Netfilter-based firewalls Eric Leblond (Mar 09)
- Re: Attack on badly configured Netfilter-based firewalls Kurt Seifried (Mar 09)
- Re: Attack on badly configured Netfilter-based firewalls Jussi Eronen (Mar 02)
- Re: Attack on badly configured Netfilter-based firewalls Kurt Seifried (Mar 02)
- Re: Attack on badly configured Netfilter-based firewalls Jussi Eronen (Mar 20)
- Re: Attack on badly configured Netfilter-based firewalls Eric Leblond (Feb 26)
- Re: Attack on badly configured Netfilter-based firewalls Solar Designer (Feb 26)
- Re: Attack on badly configured Netfilter-based firewalls Eric Leblond (Feb 26)
- Re: Attack on badly configured Netfilter-based firewalls yersinia (Feb 27)
- Re: Attack on badly configured Netfilter-based firewalls Sebastian Krahmer (Feb 27)
- Re: Attack on badly configured Netfilter-based firewalls ArkanoiD (Feb 27)
- Re: Attack on badly configured Netfilter-based firewalls Sebastian Krahmer (Feb 27)
- Re: Attack on badly configured Netfilter-based firewalls Eric Leblond (Feb 27)
- Re: Attack on badly configured Netfilter-based firewalls Eric Leblond (Feb 28)