|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: linux userland ip spoofing vulnerability
CyberPsychotic (fygrave
SCORPIONS.NET)
Tue, 26 Oct 1999 14:45:24 +0600
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
- Next message: Sean Burford: "Re: ICQ 2000"
- Previous message: Boo Hampshire: "linux userland ip spoofing vulnerability"
- Next in thread: Simple Nomad: "Re: linux userland ip spoofing vulnerability"
- Reply: Simple Nomad: "Re: linux userland ip spoofing vulnerability"
On Wed, 27 Oct 1999 out of nowhere Boo Hampshire spoke:
~ :There is code + documentation attached.
~ :
this isn't vulnerability. AFAIK this is required by posix, that bind
should allow you to bind any specific IP adress, not just 0.0.0.0:0. Many
networking daemons rely on this feature to provide some specific
configuration twirks. However if you don't feel comfortable that your
users can bind local ports, you may apply patch by route(?) which requires
a user to be in specific group to do so.. Alternatively you could just
`fix' socketcall from within a module.
- Next message: Sean Burford: "Re: ICQ 2000"
- Previous message: Boo Hampshire: "linux userland ip spoofing vulnerability"
- Next in thread: Simple Nomad: "Re: linux userland ip spoofing vulnerability"
- Reply: Simple Nomad: "Re: linux userland ip spoofing vulnerability"
This archive was generated by hypermail 2.0b3 on Wed Oct 27 1999 - 06:39:19 CDT