From owner-freebsd-security Thu Jan 27 17:58:37 2000 Delivered-To: freebsd-security@freebsd.org Received: from infidel.boolean.net (router.boolean.net [198.144.206.49]) by hub.freebsd.org (Postfix) with ESMTP id 6A3141586F for ; Thu, 27 Jan 2000 17:58:32 -0800 (PST) (envelope-from Kurt@Boolean.Net) Received: from gypsy (gypsy.boolean.net [198.144.202.243]) by infidel.boolean.net (8.9.3/8.9.3) with SMTP id BAA63648; Fri, 28 Jan 2000 01:58:16 GMT (envelope-from Kurt@Boolean.Net) Message-Id: <3.0.5.32.20000127175807.0094d940@infidel.boolean.net> X-Sender: guru@infidel.boolean.net (Unverified) X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.5 (32) Date: Thu, 27 Jan 2000 17:58:07 -0800 To: Brett Glass From: Kurt Zeilenga Subject: Re: Riddle me this Cc: Matthew Dillon , security@FreeBSD.ORG In-Reply-To: <4.2.2.20000127171529.00c56a00@localhost> References: <200001270425.UAA18744@apollo.backplane.com> <200001270355.UAA01355@lariat.lariat.org> Mime-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org At 05:21 PM 1/27/00 -0700, Brett Glass wrote: >And it gets worse. The default address of the print server hardware -- which >the client software tries to reach when it's setting up -- is (are you ready?) >192.0.0.192. HP has been doing that for years... http://search.ietf.org/internet-drafts/draft-manning-dsua-01.txt reads: As a side note, at least one vendor has hijacked an address range for use by its printservers. That range is 192.0.0.0/24 and the specific address that they use is 192.0.0.192/32. This is not a valid delegation to this vendor and its use argues for reconstitution of this service into the link-local range or configurable with site delegated space. and % dig -x 192.0.0.192 ; <<>> DiG 8.2 <<>> -x ;; res options: init recurs defnam dnsrch ;; got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 4 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 1, ADDITIONAL: 1 ;; QUERY SECTION: ;; 192.0.0.192.in-addr.arpa, type = ANY, class = IN ;; ANSWER SECTION: 192.0.0.192.in-addr.arpa. 17h42m33s IN PTR 192.0.0.0-is-used-for-printservices-discovery----illegally.iana.net. ;; AUTHORITY SECTION: 0.0.192.in-addr.arpa. 17h42m33s IN NS NS.ISI.EDU. ;; ADDITIONAL SECTION: NS.ISI.EDU. 17h41m55s IN A 128.9.128.127 ;; Total query time: 108 msec ;; FROM: infidel.boolean.net to SERVER: default -- 127.0.0.1 ;; WHEN: Thu Jan 27 17:53:24 2000 ;; MSG SIZE sent: 42 rcvd: 183 ---- Kurt D. Zeilenga Net Boolean Incorporated To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message