Bugtraq mailing list archives

Re: Router programming,source routes and spoofed ICMP attacks.

From: alan () manawatu planet org nz (Alan Brown)
Date: Mon, 24 Jun 1996 19:57:06 +1200


On Sat, 22 Jun 1996, der Mouse wrote:

"Fixing" this by dumping source routes is like "fixing" nuke.c by
dropping ICMP packets - it's going at it all wrong.


Looked at from a purist point of view, yes.

Securicor 3net's Ace routers have a very large warning in their manuals
that enabling source routing may leave you open to attack. Cisco don't,
and because they default to allowing it, many vulnerable admins are
blithely unaware of the risks they may be taking.

I agree that not allowing source routing to be enabled is wrong, but I
feel that leaving it enabled by default without a warning is just as wrong.

AB

Current thread:

Re: Router programming,source routes and spoofed ICMP attacks. Bill Hogan (Jun 20)
- <Possible follow-ups>
- Re: Router programming,source routes and spoofed ICMP attacks. Tom Fitzgerald (Jun 20)
- Re: Router programming,source routes and spoofed ICMP attacks. Jeff Uphoff (Jun 21)
- Re: Router programming,source routes and spoofed ICMP attacks. Alan Brown (Jun 24)
- Re: Router programming,source routes and spoofed ICMP attacks. Chris Johnson (Jun 24)