[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Sheflug] Re: Security : Port scanning
And Lo! Tthe Great Prophet " M" uttered these words of wisdom...
>
> I understand most routers on the internet are configured to ignore
> source routed information, they route according to the destination
> address only.
>
That's what I understand as well, but prooving it isn't as easy. I suspect
all ISPs will drop source routed packets (or strip the source routing out)
before a packet leaves their network as they don't trust their customers,
so it's not a simple case of crafting a source route and seeing how far
along a backbone it gets as it can't even get to the backbone :)
I have thought of a possible use though ... I'm sure I've heard of tunnels
or VPNs that need source routing, so packets can be routed properly
through a router that would otherwise ignore them ... but I'll have to do
some background searches to find out if I remember correctly :)
Chris...
--
\ Chris Johnson \
\ cej [at] nightwolf.org.uk \
\ http://cej.nightwolf.org.uk/ ~-----------------------------------+
\ Redclaw chat - http://redclaw.org.uk - telnet redclaw.org.uk 2000 \____
___________________________________________________________________
Sheffield Linux User's Group -
http://www.sheflug.co.uk/mailfaq.html
GNU the choice of a complete generation.