Re: the openssh exploit

To: Phillip Hofmeister <plhofmei@zionlth.org>
Cc: debian-security@lists.debian.org
Subject: Re: the openssh exploit
From: Paul Baker <pbaker@where2getit.com>
Date: Tue, 25 Jun 2002 11:30:41 -0500
Message-id: <[🔎] E3B86D48-8858-11D6-8A0B-0003937562B8@where2getit.com>
In-reply-to: <[🔎] 20020625161459.GC14562@zionlth.org>


On Tuesday, June 25, 2002, at 11:14 AM, Phillip Hofmeister wrote:

On Tue, Jun 25, 2002 at 02:40:19AM -0400, Anthony DeRobertis wrote:

Note that to do (1), you must insure that the real machine does
not send a RST in response to the SYN|ACK. Ways to do this are
numerous; DoS attacks come to mind.

Or just use an unused IP....

He was talking about spoofing ips that I am allowing access for in myfirewall. All the ips I'm allowing are for existing machines, so anunused IP would be one that is not allowed through the firewall already.


--
Paul Baker

"They that can give up essential liberty to obtain a little temporarysafety deserve neither liberty nor safety."

         -- Benjamin Franklin, 1759

GPG Key: http://homepage.mac.com/pauljbaker/public.asc


--
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

References:
- Re: the openssh exploit
  - From: Phillip Hofmeister <plhofmei@zionlth.org>

Prev by Date: Re: [SECURITY] [DSA-134-2] Unknown OpenSSH remote vulnerability
Next by Date: Re: [SECURITY] [DSA-134-2] Unknown OpenSSH remote vulnerability
Previous by thread: Re: the openssh exploit
Next by thread: Re: the openssh exploit
Index(es):
- Date
- Thread