From owner-freebsd-hackers  Sun Oct  8 01:28:25 1995
Return-Path: owner-hackers
Received: (from root@localhost)
          by freefall.freebsd.org (8.6.12/8.6.6) id BAA23313
          for hackers-outgoing; Sun, 8 Oct 1995 01:28:25 -0700
Received: from tango.rahul.net (tango.rahul.net [192.160.13.5])
          by freefall.freebsd.org (8.6.12/8.6.6) with SMTP id BAA23302
          for <hackers@freebsd.org>; Sun, 8 Oct 1995 01:28:20 -0700
Received: from bolero.rahul.net by tango.rahul.net with SMTP id AA22125
  (5.67b8/IDA-1.5 for <hackers@freebsd.org>); Sun, 8 Oct 1995 01:28:11 -0700
Received: from RockyMountain.rahul.net by bolero.rahul.net with SMTP id AA11853
  (5.67b8/IDA-1.5); Sun, 8 Oct 1995 01:25:04 -0700
Received: by RockyMountain.rahul.net id AA15868
  (5.67b/IDA-1.5); Sun, 8 Oct 1995 01:22:31 -0700
Date: Sun, 8 Oct 1995 01:22:31 -0700
From: Pete Delaney <pete@RockyMountain.rahul.net>
Message-Id: <199510080822.AA15868@RockyMountain.rahul.net>
To: julian@ref.tfs.com, pete@puffin.pelican.com
Subject: Re: TCP/IP Spoofing etc. - TCP/IP Tuneling?
Cc: hackers@freebsd.org, pete@RockyMountain.rahul.net,
        Wally@RockyMountain.rahul.net
Sender: owner-hackers@freebsd.org
Precedence: bulk

   > In article <199510072005.NAA11885@ref.tfs.com> you write:

   > >(I.P.Spoofing is another thing I'm sorta curious about..
   > >I guess there may be CERT notes on these right?)
   > 
   > Steve Bellovin (Bell Labs) is the reference I remember; there are several
   > others.  I've modified several FreeBSD kernels to foil the sequence-number
   > attack (but one wants a better system than mine to do it "right"; if I
   > let out how I did it it wouldn't work.)
   > 
   > (Nice to have access to the source :-)
   > 
   > >(got a cert URL?)
   > 
   > ftp.cert.org.  I don't know about a web server but it would have the
   > obvious name if it exists.  Their reports are purposely obscured (but at
   > least tell you that attacks exist); for more detail see 8lgm and other
   > stuff in comp.security.unix and comp.security.misc.
   > 
   > The latest cert report was a summary of the 'announced' bugs which are
   > still outstanding on popular systems...  I don't know which ones we are
   > susceptible to; we are using the latest (or next-latest) sendmail which
   > has plugged many of them.
   > 
   > -- Pete
   > 

Know where I can find information about setting up a IP tunnel between a
buddy of mine with full internet routing capability and my systems via
my non-routing gateway. What I'd like to do is have one my sparcstations
act as a qateway and tunnel all IP activity thru my ISP to by buddy Wally
and have Wally then route the stuff to the internet. Anyone know where I
can get some code that does this?

-pete