Security Basics mailing list archives

Re: Removing ping/icmp from a network

From: "Fabio Fagundes" <fabio.fagundes () gmail com>
Date: Tue, 25 Mar 2008 17:11:06 -0300

Hi all,

Please consider the risk of an intruder using ICMP as a Covert Channel
(http://en.wikipedia.org/wiki/Covert_channel).

Should one configure corporate routers to inspect and to rewrite ICMP
packets to avoid / reduce this risk ?

Regards,
Fabio.


On Tue, Mar 25, 2008 at 3:12 PM, Mark Owen <mr.markowen () gmail com> wrote:

On Tue, Mar 25, 2008 at 12:56 PM, Hopke, Greg <GHopke () libertymgt com> wrote:

Is ICMP on a LAN insecure?

 I could see lowing it through a firewall or from trusted to non-trusted.

 Greg

Current thread:

Removing ping/icmp from a network Secure This (Mar 25)
- RE: Removing ping/icmp from a network Hopke, Greg (Mar 25)
  - Re: Removing ping/icmp from a network Mark Owen (Mar 25)
    - Message not available
    - Re: Removing ping/icmp from a network Mark Owen (Mar 25)
    - Re: Removing ping/icmp from a network Fabio Fagundes (Mar 25)
    - RE: Removing ping/icmp from a network Ramsdell, Scott (Mar 26)
    - Re: Removing ping/icmp from a network Ansgar -59cobalt- Wiechers (Mar 26)
    - RE: Removing ping/icmp from a network Ramsdell, Scott (Mar 27)
    - Re: Removing ping/icmp from a network Ansgar -59cobalt- Wiechers (Mar 27)
- Re: Removing ping/icmp from a network Ansgar -59cobalt- Wiechers (Mar 25)
- Re: Removing ping/icmp from a network Jon R. Kibler (Mar 25)
  - Re: Removing ping/icmp from a network Secure This (Mar 26)
    - DoD aproved disk wiping tool JP Vicente (Mar 27)
    - RE: DoD aproved disk wiping tool Timmothy Lester (Mar 27)
    - Re: DoD aproved disk wiping tool John Syers (Mar 27)

(Thread continues...)