Penetration Testing mailing list archives
Re: [PEN-TEST] advertising private IP numbers?
From: "St. Clair, James" <JStClair () VREDENBURG COM>
Date: Fri, 22 Dec 2000 07:55:05 -0500
Internal IP's should not normally show up in a traceroute - their outgoing traffic is not blocked correctly at the firewall//router, depending on network config. -----Original Message----- From: securitygeek () HUSHMAIL COM [mailto:securitygeek () HUSHMAIL COM] Sent: Thursday, December 21, 2000 4:33 PM To: PEN-TEST () SECURITYFOCUS COM Subject: [PEN-TEST] advertising private IP numbers? Below is part of traceroute that I grabbed... Is it normal to advertise non-routable/interal IP's like this? If it isn't, what mischief can be made easier to accomplish when this is done? 18 80 ms 100 ms 80 ms bb1-pos3-0-0.rdc1.va.home.net [24.7.73.110] 19 100 ms 140 ms 110 ms x.x.x.home.net [24.x.x.x] 20 81 ms 90 ms 150 ms 10.252.60.6 21 331 ms 320 ms 411 ms 192.168.0.98 22 190 ms 160 ms 90 ms x.x.x.253 23 150 ms 191 ms 140 ms x.x.x.10
Current thread:
- [PEN-TEST] advertising private IP numbers? securitygeek (Dec 21)
- Re: [PEN-TEST] advertising private IP numbers? Philipp Buehler (Dec 22)
- Re: [PEN-TEST] advertising private IP numbers? Joe Shaw (Dec 22)
- Re: [PEN-TEST] advertising private IP numbers? Bennett Todd (Dec 22)
- <Possible follow-ups>
- Re: [PEN-TEST] advertising private IP numbers? St. Clair, James (Dec 22)
- Re: [PEN-TEST] advertising private IP numbers? van der Kooij, Hugo (Dec 22)
- Re: [PEN-TEST] advertising private IP numbers? Barber, Chris (Dec 22)
- Re: [PEN-TEST] advertising private IP numbers? Dan Schleifer (Dec 22)
- Re: [PEN-TEST] advertising private IP numbers? Jason Paulson (Dec 22)
- Re: [PEN-TEST] advertising private IP numbers? Carric Dooley (Dec 23)
- Re: [PEN-TEST] advertising private IP numbers? Deus, Attonbitus (Dec 22)
- Re: [PEN-TEST] advertising private IP numbers? van der Kooij, Hugo (Dec 23)
- Re: [PEN-TEST] advertising private IP numbers? Dan Schleifer (Dec 22)
- Re: [PEN-TEST] advertising private IP numbers? securitygeek (Dec 22)
- Re: [PEN-TEST] advertising private IP numbers? Carter, Adam (Dec 23)
- Re: [PEN-TEST] advertising private IP numbers? Chris St. Clair (Dec 27)