Full Disclosure: RE: ICMP Covert channels question

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure mailing list archives

RE: ICMP Covert channels question

From: <lists-security () nettracers com>
Date: Sat, 29 Jan 2005 11:18:15 -0800

"As an attacker, I would not design an exploit that *depended* upon private
addresses being routed external to the victim's router unless I first
verified that they were.

Paul Schmehl (pauls () utdallas edu)"

But Paul, you know that crackers rely on the misconfigured, unpatched masses
to exploit, not the people with properly configured routers and systems.
While you and I will implement ingress and egress anti-spoofing rules, in
the field I see plenty of misconfigured routers that don't.  

- Bryan K. Watson
- bwatson () nettracers com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

By Date By Thread

Current thread:

ICMP Covert channels question cyberpixl (Jan 28)
- Re: ICMP Covert channels question Andrew Farmer (Jan 28)
- Re: ICMP Covert channels question Paul Schmehl (Jan 28)
  - RE: ICMP Covert channels question lists-security (Jan 29)
    - RE: ICMP Covert channels question Paul Schmehl (Jan 29)
    - RE: ICMP Covert channels question lists-security (Jan 29)
  - Re: ICMP Covert channels question cyberpixl (Jan 30)
- Re: ICMP Covert channels question Gadi Evron (Jan 28)
- <Possible follow-ups>
- Re: ICMP Covert channels question Darren Bounds (Jan 29)