Date: Thu, 9 Dec 1999 09:02:04 +1030 From: Mark Newton <newton@atdot.dotat.org> To: Adam Laurie <adam@algroup.co.uk> Cc: "Scott I. Remick" <scott@computeralt.com>, freebsd-security@FreeBSD.ORG Subject: Re: What kind of attack is this? Message-ID: <19991209090204.E7509@atdot.dotat.org> In-Reply-To: <384ED7F4.61804910@algroup.co.uk>; from adam@algroup.co.uk on Wed, Dec 08, 1999 at 10:13:08PM %2B0000 References: <4.2.2.19991208162315.00b5f4e0@mail.computeralt.com> <19991209083140.A7509@atdot.dotat.org> <384ED7F4.61804910@algroup.co.uk>
index | next in thread | previous in thread | raw e-mail
[-- Attachment #1 --]
On Wed, Dec 08, 1999 at 10:13:08PM +0000, Adam Laurie wrote:
> > ipfw add pass udp from any GOODPORT to any in via OUTSIDE-INTERFACE
> > i in via OUTSIDE-INTERFACE
> > ipfw add pass all from any to any
>
> No, that would be bad. If they can spoof their address, they can
> certainly spoof the source port (get a copy of netcat (respex to hobbit)
> and have a play if you don't believe it).
Yes, I know that, but under the circumstances can you think of any
better ideas? :-)
- mark
--------------------------------------------------------------------
I tried an internal modem, newton@atdot.dotat.org
but it hurt when I walked. Mark Newton
----- Voice: +61-4-1620-2223 ------------- Fax: +61-8-82231777 -----
[-- Attachment #2 --]
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 5.0i for non-commercial use
MessageID: J8fISUaNkofDdsuMEOLqbnNwUzVRPkgf
iQA/AwUBOE7cYzVY9oBk/GJ4EQIrzwCfSK8lJ8W/9JxbFaG1CzeXI/7yxk0AnjQt
0NO3sUA+sjC6MIL3WUYL5LMM
=W2O0
-----END PGP SIGNATURE-----
help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19991209090204.E7509>