On Sat, Aug 04, 2001 at 11:45:55AM -0400, burns wrote:
...
>The problem is not tcp/ip itself, but how MS purportedly intends to allow raw
>socket access in XP - in other words it's not the highway, but how MS is
>building the on ramps.
Raw socket access isn't a problem in itself. Steve Gibson notes that this
is something that's been available on Unix and Linux systems for years.
Many of the attacks by script kiddies could be eliminated if ISPs put in
elementary packet filters on their routers and RAS systems where the
prohibit outgoing packets with source addresses that couldn't be coming
through that port. The simplest case is the ISP blocking any outgoing
packets at their border router that has a source address that isn't on
their network. They can also set filters with radius to refuse packets
from a dialup connection with a source address that isn't the one assigned
to the port.
The IP filters should also reject any incoming packets from the outside
world that have a source address on the interior networks.
Bill
--
INTERNET: [EMAIL PROTECTED] Bill Campbell; Celestial Software LLC
UUCP: camco!bill PO Box 820; 6641 E. Mercer Way
FAX: (206) 232-9186 Mercer Island, WA 98040-0820; (206) 236-1676
URL: http://www.celestial.com/
Few skills are so well rewarded as the ability to convince parasites that
they are victims. -- Thomas Sowell
_______________________________________________
http://linux.nf -- [EMAIL PROTECTED]
Archives, Subscribe, Unsubscribe, Digest, Etc
->http://linux.nf/mailman/listinfo/linux-users
