pc/linux tcp/ip problems..

Devin Carraway aqua at atlantic.devin.com
Tue Jan 25 17:49:10 PST 2000


On Tue, Jan 25, 2000 at 05:23:42PM -0800, Tyler Booth wrote:
> ### This section starts up IP spoofing protection on all your interfaces.....

	While checking that packets coming from an interface have a
legitimate reason to (especially if you use host address-based
authentication, e.g. .rhosts -- hint: don't), don't let this part lull you
-- it's entirely possible to spoof packets to machines of this sort, and
most IP-based attacks allow for randomization or manual selection of their
IP source addresses.

	A broader help with IP spoofing is for border firewalls, especially
those of [IN]SPs, to be configured not to send outgoing packets with an
address that isn't part of their network -- makes it harder to hide the
origins of many sorts of attacks.

	That said, firewalling is good.  Also a good skill to have.


-- 
Devin  \ aqua(at)devin.com, finger for PGP;  http://www.devin.com
Carraway \ IRC: Requiem  GCS/CC/L s-:--- !a !tv C++++$ ULB+++$ O+@ P L+++



More information about the talk mailing list