nanog mailing list archives
Re: TCP/BGP vulnerability - easier than you think
From: Rob Thomas <robt () cymru com>
Date: Tue, 20 Apr 2004 23:17:19 -0500 (CDT)
Hi, Patrick. ] Really? I certainly hope an attacker tries those three ports on a ] router I know about. Looking at a random cisco router at a random NAP ] with a significant number of peers, there are a total of zero session ] on those ports. The ephemeral ports are used for active opens, not passive opens. In other words there won't be a listener bound on the ephemeral ports. Try nmap'ing the source port you use to SSH to TCP 22 on a remote server, for example - same negative result. That doesn't mean it isn't using the "closed" port as a source port. :) Or did I misunderstand the post? I'm low on coffee tonight. :) Thanks, Rob. -- Rob Thomas http://www.cymru.com ASSERT(coffee != empty);
Current thread:
- Re: TCP vulnerability, (continued)
- Re: TCP vulnerability Randy Bush (Apr 20)
- Re: TCP vulnerability Joe Abley (Apr 20)
- Re: TCP vulnerability Stephen Stuart (Apr 20)
- Re: TCP vulnerability Tom (UnitedLayer) (Apr 20)
- Massive stupidity (Was: Re: TCP vulnerability) Richard A Steenbergen (Apr 20)
- Re: Massive stupidity (Was: Re: TCP vulnerability) Sean Donelan (Apr 20)
- Re: Massive stupidity (Was: Re: TCP vulnerability) Mike Tancsa (Apr 20)
- Re: Massive stupidity (Was: Re: TCP vulnerability) Patrick W . Gilmore (Apr 20)
- TCP/BGP vulnerability - easier than you think David Luyer (Apr 20)
- Re: TCP/BGP vulnerability - easier than you think Patrick W . Gilmore (Apr 20)
- Re: TCP/BGP vulnerability - easier than you think Rob Thomas (Apr 20)
- Re: TCP/BGP vulnerability - easier than you think Joe Abley (Apr 20)
- RE: TCP/BGP vulnerability - easier than you think David Luyer (Apr 20)
- Re: TCP/BGP vulnerability - easier than you think Adam Rothschild (Apr 21)
- Re: TCP/BGP vulnerability - easier than you think E.B. Dreger (Apr 21)
- Re: TCP/BGP vulnerability - easier than you think E.B. Dreger (Apr 22)
- Re: TCP/BGP vulnerability - easier than you think Iljitsch van Beijnum (Apr 21)
- Re: TCP/BGP vulnerability - easier than you think Daniel Roesen (Apr 21)
- Re: TCP/BGP vulnerability - easier than you think Iljitsch van Beijnum (Apr 21)
- Re: TCP/BGP vulnerability - easier than you think Daniel Roesen (Apr 21)
- Re: TCP/BGP vulnerability - easier than you think Iljitsch van Beijnum (Apr 21)