|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
RE: Firewall comparison in Data Communications
David T. Smith (dsmith
uswebcks.com)
Wed, 02 Jun 1999 07:07:16 -0400
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
- Next message: W J La Cholter: "RE: Firewall comparison in Data Communications"
- Previous message: Ryan Russell: "Re: Firewall-Wizards Digest V1 #311"
- Next in thread: Alexander Schreiber: "RE: Firewall comparison in Data Communications"
At 08:17 AM 5/31/99 -0400, Brian Steele wrote:
><newbie-mode>What's a "source-routed packet"? And what danger does it pose
>to a Firewall?</newbie-mode>
>
>Brian
>
>
In brief, a source routed packet is an IP packet that includes its own
routing information. If you enable source-routed processing then you are
supposed to reply to the packet with the same route as it sent you:
The wily hacker creates a packet
TO: HQ.corp.com
FR: field.corp.com
Source-route option: wily.hacker.hack
<<Packet innards>>
With source routing turned on the reply goes:
To: Field.corp.com
Fr: HQ.corp.com
Source-route option: wily.hacker.hack
<<packet innards>>
And you have a man in the middle. Wily can simply masquerade as field and
be trusted by HQ.
DTS
D A V I D T . S M I T H
Principal Consultant, Network Solutions
__________________________________________
USWeb/CKS Corporation http://www.uswebcks.com/
50 Washington Street 6th Floor
South Norwalk, CT 06854
ph: 1 203 857 0080
fax: 1 203 857 0082
mailto: dsmithuswebcks.com
USWeb/CKS - A Strategic Partner for the Information Age
- Next message: W J La Cholter: "RE: Firewall comparison in Data Communications"
- Previous message: Ryan Russell: "Re: Firewall-Wizards Digest V1 #311"
- Next in thread: Alexander Schreiber: "RE: Firewall comparison in Data Communications"
This archive was generated by hypermail 2.0b3 on Sat Jul 17 1999 - 07:18:59 CDT