[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sheflug] Re: Security : Port scanning

To: shef-lug [at] xxxxxxxxxxxxxxxxxxx
Subject: Re: [Sheflug] Re: Security : Port scanning
From: "Chris J" <cej [at] xxxxxxxxxxxxxxxx>
Date: Thu, 8 May 2003 14:46:40 +0100 (BST)
Delivered-to: shef-lug [at] list.sheflug.org.uk
Importance: Normal
List-help: <mailto:shef-lug-request [at] list.sheflug.org.uk?subject=help>
List-id: Sheflug <shef-lug.list.sheflug.org.uk>
List-post: <mailto:shef-lug [at] list.sheflug.org.uk>
List-subscribe: <http://community.uklinux.net/mailman/listinfo/shef-lug>,<mailto:shef-lug-request [at] list.sheflug.org.uk?subject=subscribe>
List-unsubscribe: <http://community.uklinux.net/mailman/listinfo/shef-lug>,<mailto:shef-lug-request [at] list.sheflug.org.uk?subject=unsubscribe>
Reply-to: shef-lug [at] xxxxxxxxxxxxxxxxxxx
Sender: shef-lug-admin [at] xxxxxxxxxxxxxxxxxxx
User-agent: SquirrelMail/1.4.0

And Lo! Tthe Great Prophet " M" uttered these words of wisdom...
>
> I understand most routers on the internet are configured to ignore
> source routed information, they route according to the destination
> address only.
>

That's what I understand as well, but prooving it isn't as easy. I suspect
all ISPs will drop source routed packets (or strip the source routing out)
before a packet leaves their network as they don't trust their customers,
so it's not a simple case of crafting a source route and seeing how far
along a backbone it gets as it can't even get to the backbone :)

I have thought of a possible use though ... I'm sure I've heard of tunnels
or VPNs that need source routing, so packets can be routed properly
through a router that would otherwise ignore them ... but I'll have to do
some background searches to find out if I remember correctly :)

Chris...

-- 
\ Chris Johnson                 \
 \ cej [at] nightwolf.org.uk          \
  \ http://cej.nightwolf.org.uk/  ~-----------------------------------+
   \ Redclaw chat - http://redclaw.org.uk - telnet redclaw.org.uk 2000 \____

___________________________________________________________________

Sheffield Linux User's Group -
http://www.sheflug.co.uk/mailfaq.html

  GNU the choice of a complete generation.

References:
- RE: [Sheflug] Re: Security : Port scanning
  - From: Morris, David (Allvac, UK)
- Re: [Sheflug] Re: Security : Port scanning
  - From: M

Prev by Date: Re: [Sheflug] Re: Security : Port scanning
Next by Date: Re: [Sheflug] Re: Security : Port scanning
Previous by thread: Re: [Sheflug] Re: Security : Port scanning
Next by thread: [Sheflug] Advanced printer driver settings
Index(es):
- Date
- Thread