Bugtraq mailing list archives
Re: Re: Router filtering not enough! (Was: Re: CERT advisory )
From: jmb () kryten Atinc COM (Jonathan M. Bresler)
Date: Fri, 27 Jan 1995 08:34:58 -0500 (EST)
On Thu, 26 Jan 1995, Pete Hartman wrote:
But in real life, the spoofing machine would never be requested to respond to arp anyway, because in real life the spoofer should be on the other side of your firewall router. If the spoofer and spoofee are on the same ether- net then there are serious internal problems that go beyond the scope of firewalls!!But such problems are the stock-in-trade of those of us at Universities.
absolutely! take that 386sx junker in the corner slap two ethernet cards in it and run drawbridge from TAMU, or a stripped/hacked down version of FreeBSD. establish a perimeter based upon subnets, a list of host addresses, anything. hell, they can just snoop the wire and pick off your passwords as they fly by. lots and lots of other problems. establish a perimeter. jmb Jonathan M. Bresler jmb () kryten atinc com | Analysis & Technology, Inc. | 2341 Jeff Davis Hwy play go. | Arlington, VA 22202 ride bike. hack FreeBSD.--ah the good life | 703-418-2800 x346
Current thread:
- BOUNCE TEST, (continued)
- BOUNCE TEST Scott Chasin (Jan 27)
- Re: Router filtering not enough! (Was: Re: CERT advisory ) Jon Peatfield (Jan 27)
- Chances of guessing? Leo Bicknell (Jan 27)
- Re: Chances of guessing? Timothy Newsham (Jan 27)
- Re: Router filtering not enough! (Was: Re: CERT advisory ) Darren Reed (Jan 26)
- Re: Router filtering not enough! (Was: Re: CERT advisory ) Pete Shipley (Jan 26)
- old post on securing a sunos 4.1.* box joshua geller (Jan 30)
- Re: old post on securing a sunos 4.1.* box pluvius (Jan 30)
- Re: Router filtering not enough! (Was: Re: CERT advisory ) smb () research att com (Jan 26)
- Re: Re: Router filtering not enough! (Was: Re: CERT advisory ) Pete Hartman (Jan 26)
- Re: Re: Router filtering not enough! (Was: Re: CERT advisory ) Jonathan M. Bresler (Jan 27)
- Re: Router filtering not enough! (Was: Re: CERT advisory ) Jonathan M. Bresler (Jan 27)
- Re: Router filtering not enough! (Was: Re: CERT advisory ) smb () research att com (Jan 27)
- Re: Router filtering not enough! (Was: Re: CERT advisory ) anonymous () some lame netcom not site (Jan 30)
- list leadership Robert M. Haas (Jan 31)
- Anonymous mailings Adam Shostack (Jan 31)
- list leadership Robert M. Haas (Jan 31)