pc/linux tcp/ip problems..
aqua at atlantic.devin.com
Tue Jan 25 17:49:10 PST 2000
On Tue, Jan 25, 2000 at 05:23:42PM -0800, Tyler Booth wrote:
> ### This section starts up IP spoofing protection on all your interfaces.....
While checking that packets coming from an interface have a
legitimate reason to (especially if you use host address-based
authentication, e.g. .rhosts -- hint: don't), don't let this part lull you
-- it's entirely possible to spoof packets to machines of this sort, and
most IP-based attacks allow for randomization or manual selection of their
IP source addresses.
A broader help with IP spoofing is for border firewalls, especially
those of [IN]SPs, to be configured not to send outgoing packets with an
address that isn't part of their network -- makes it harder to hide the
origins of many sorts of attacks.
That said, firewalling is good. Also a good skill to have.
Devin \ aqua(at)devin.com, finger for PGP; http://www.devin.com
Carraway \ IRC: Requiem GCS/CC/L s-:--- !a !tv C++++$ ULB+++$ O+@ P L+++
More information about the talk