|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Sven 'Darkman' Michels (sven_at_darkman.de)
Date: Mon Jan 06 2003 - 13:23:37 CST
Vinzent Hoefler wrote:
> On Monday 06 January 2003 13:28, Matthias Riese wrote:
>
>
>>And for the real experts my question having IP spoofing on my mind:
>>Is IP-based access control with apache really safe?
>
>
> If I understood the concept of IP-Spoofing correctly, you simply
> wouldn't receive the data, because it would be sent to the spoofed IP,
> not the sender's real one.
>
> So probably it can be considered as safe.
take care! If the sender sends spoofed packets with source
routing informations, he can probably read the packets. So he
is able, ok that isnt easy ;), to fake a whole session ...
more or less...
-- Check the headers for your unsubscription address For additional commands, e-mail: suse-security-helpsuse.com Security-related bug reports go to security
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]