Date: Sun, 5 Oct 2014 15:24:17 -0700 From: Brandon Vincent <Brandon.Vincent@asu.edu> To: Adrian Chadd <adrian@freebsd.org> Cc: freebsd-net <freebsd-net@freebsd.org>, el kalin <kalin@el.net>, freebsd-users@freebsd.org, Colin Percival <cperciva@freebsd.org>, freebsd-security@freebsd.org Subject: Re: remote host accepts loose source routed IP packets Message-ID: <CAJm4238LSs5L%2BmtrbvepC3Hi7EvpWvJwmUTFt7j0X3rmavsdtg@mail.gmail.com> In-Reply-To: <CAJ-VmonFr4eAWqS0tngV-M7m_aUHv%2B9qOVny3o5Xt0CyuxwJ8w@mail.gmail.com> References: <CAMJXoc=s=Ud52NJ0dbK-6qKEcszbni4bi1MA8mgRtQSo=2Uuyw@mail.gmail.com> <CAMJXoc=5gs17ZgQ7LYALwKFRPN5hQ38OOuBtDk=EjZzi82EFMA@mail.gmail.com> <CAMJXockiQ%2B0gFbxSY43OyMbNqTjdzR1i16w%2Byiqmm=cQ8HR=pQ@mail.gmail.com> <CAJm423-mFg%2BzU_RB%2Bkp8wmp-V31onJJV0K4FUOLcv%2BczAOCKXA@mail.gmail.com> <CAMJXock7iYsh%2BMXMcxZjaTNg6cgm7g%2BHa4=ZQJqLq0DtzK5BWQ@mail.gmail.com> <CAMJXocm=2D_F8uN1JCKjMTdQvkRhWv9Owd8=UMhYOpKK=drSHw@mail.gmail.com> <CAMJXocnJRGSr%2BLy2dEnwZweg1hCN6LxtHBtjE=OEed_qoeShrA@mail.gmail.com> <CAJ-VmonFr4eAWqS0tngV-M7m_aUHv%2B9qOVny3o5Xt0CyuxwJ8w@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, Oct 5, 2014 at 2:39 PM, Adrian Chadd <adrian@freebsd.org> wrote: > All accept_sourceroute does is prevent the stack from forwarding > source routed packets. If it's destined locally then it's still > accepted. Out of curiosity, isn't "net.inet.ip.accept_sourceroute" supposed to reject incoming source routed packets? On 5 October 2014 13:22, el kalin <kalin@el.net> wrote: > hmmm=E2=80=A6 could it be openvas?! OpenVAS is a fork of Nessus from when it was open source. HackerGuardian seems to use Nessus as the chief scanning engine. Brandon Vincent
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAJm4238LSs5L%2BmtrbvepC3Hi7EvpWvJwmUTFt7j0X3rmavsdtg>