nanog mailing list archives
Re: Access to the Internic Blocked
From: John Hawkinson <jhawk () bbnplanet com>
Date: Thu, 22 Aug 1996 01:52:45 -0400 (EDT)
On itself, LSRR is a godsend to hackers (i can think of about a dozen of very nasty attacks using general LSRR). The only useful application for it is traceroute. Why don't router vendors provide an option to turn it off for everything but ICMP ECHO?Personally I find this an excellent suggestion.
So now I need to hack my traceroute to send ICMP_ECHO_REQUESTS instead of high-port udp packets? Oh well, I guess we can put this right next to the patches to have traceroute send TCP SYNs to get through stupid firewalls. --jhawk - - - - - - - - - - - - - - - - -
Current thread:
- Re: Access to the Internic Blocked, (continued)
- Re: Access to the Internic Blocked Golan Ben-Oni (Aug 21)
- Re: Access to the Internic Blocked Mark Kosters (Aug 21)
- Re: Access to the Internic Blocked Golan Ben-Oni (Aug 21)
- Re: Access to the Internic Blocked Michael Dillon (Aug 21)
- Re: Access to the Internic Blocked Carl Payne (Aug 21)
- Re: Access to the Internic Blocked -- LSRR, traceroute with ICMP Edward Henigin (Aug 21)
- Re: Access to the Internic Blocked -- LSRR, traceroute with ICMP Ehud Gavron (Aug 22)
- Re: Access to the Internic Blocked Curtis Villamizar (Aug 22)
- Re: Access to the Internic Blocked John Hawkinson (Aug 21)
- Re: Access to the Internic Blocked Curtis Villamizar (Aug 22)
- Re: Access to the Internic Blocked Avi Freedman (Aug 23)
- Re: Access to the Internic Blocked Curtis Villamizar (Aug 23)
- Re: Access to the Internic Blocked Michael Dillon (Aug 22)