From owner-freebsd-hackers Sun Oct 8 01:28:25 1995 Return-Path: owner-hackers Received: (from root@localhost) by freefall.freebsd.org (8.6.12/8.6.6) id BAA23313 for hackers-outgoing; Sun, 8 Oct 1995 01:28:25 -0700 Received: from tango.rahul.net (tango.rahul.net [192.160.13.5]) by freefall.freebsd.org (8.6.12/8.6.6) with SMTP id BAA23302 for ; Sun, 8 Oct 1995 01:28:20 -0700 Received: from bolero.rahul.net by tango.rahul.net with SMTP id AA22125 (5.67b8/IDA-1.5 for ); Sun, 8 Oct 1995 01:28:11 -0700 Received: from RockyMountain.rahul.net by bolero.rahul.net with SMTP id AA11853 (5.67b8/IDA-1.5); Sun, 8 Oct 1995 01:25:04 -0700 Received: by RockyMountain.rahul.net id AA15868 (5.67b/IDA-1.5); Sun, 8 Oct 1995 01:22:31 -0700 Date: Sun, 8 Oct 1995 01:22:31 -0700 From: Pete Delaney Message-Id: <199510080822.AA15868@RockyMountain.rahul.net> To: julian@ref.tfs.com, pete@puffin.pelican.com Subject: Re: TCP/IP Spoofing etc. - TCP/IP Tuneling? Cc: hackers@freebsd.org, pete@RockyMountain.rahul.net, Wally@RockyMountain.rahul.net Sender: owner-hackers@freebsd.org Precedence: bulk > In article <199510072005.NAA11885@ref.tfs.com> you write: > >(I.P.Spoofing is another thing I'm sorta curious about.. > >I guess there may be CERT notes on these right?) > > Steve Bellovin (Bell Labs) is the reference I remember; there are several > others. I've modified several FreeBSD kernels to foil the sequence-number > attack (but one wants a better system than mine to do it "right"; if I > let out how I did it it wouldn't work.) > > (Nice to have access to the source :-) > > >(got a cert URL?) > > ftp.cert.org. I don't know about a web server but it would have the > obvious name if it exists. Their reports are purposely obscured (but at > least tell you that attacks exist); for more detail see 8lgm and other > stuff in comp.security.unix and comp.security.misc. > > The latest cert report was a summary of the 'announced' bugs which are > still outstanding on popular systems... I don't know which ones we are > susceptible to; we are using the latest (or next-latest) sendmail which > has plugged many of them. > > -- Pete > Know where I can find information about setting up a IP tunnel between a buddy of mine with full internet routing capability and my systems via my non-routing gateway. What I'd like to do is have one my sparcstations act as a qateway and tunnel all IP activity thru my ISP to by buddy Wally and have Wally then route the stuff to the internet. Anyone know where I can get some code that does this? -pete