Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Security Incidents mailing list archives

Re: What's going on here?
From: Valdis.Kletnieks () vt edu
Date: Fri, 30 Aug 2002 16:38:59 -0400
On Thu, 29 Aug 2002 18:21:07 -0000, wykkyd () ziplip com  said:


Three scenarios, both based on the facts that (1) ZoneAlarm is host-based, 
ans (2) 10.x is not an internet-routable protocol (as in, no router will 
forward it outside of your own network):


An *AMAZING* number of routers will forward these things out into the Internet.

An even more amazing number of ISPs fail to do proper ingress routing to stop
borked packets from their customers entering into the Internet at large.

The fact that RFC1918 space (10.x.x.x, etc) isn't usable on the public
network (by definition) doesn't mean that you won't see inbound packets
with RFC1918 source addresses.
-- 
                                Valdis Kletnieks
                                Computer Systems Senior Engineer
                                Virginia Tech

Attachment: _bin
Description:

  By Date           By Thread  

Current thread:
  • Re: What's going on here? Valdis . Kletnieks (Sep 02)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]