>to offer an option to use the DNS list to only check the connecting IP and >not the header ones
simply configure asspto do it this way - 'enhancedOriginIPDetect' Thomas Von: Grayhat <gray...@gmx.net> An: assp-user@lists.sourceforge.net Datum: 22.04.2015 08:38 Betreff: Re: [Assp-user] 0.0.0.0/8 IPs in header? :: On Tue, 21 Apr 2015 18:11:35 +0200 :: <titc.65535f8615.of25b1858c.c7fc2a32-onc1257e2e.0058c6bd-c1257e2e.0058f...@thockar.com> :: Thomas Eckardt <thomas.ecka...@thockar.com> wrote: > At least assp should know that 0.x.x.x is nonroutable - it currently > does NOT. This will be fixed in next build! > Scott, this change will make 0.x.x.x obsolet in every IP address > definition !!! Thomas, the problem is that, in some cases you may have some "bogon" IPs knocking at your port; for such an issue one may use the DNS list published by the CYMRU team, that is http://www.team-cymru.org/bogon-reference.html http://www.team-cymru.org/bogon-reference-dns.html the problem is that, while this method is totally Ok to reject bogon hosts (e.g. hijacked IP blocks and so on) it causes problems in case the filter (ASSP in our case) uses the list to check "header IPs" and not just the connecting one; so, I wonder if it may be the case to offer an option to use the DNS list to only check the connecting IP and not the header ones ------------------------------------------------------------------------------ BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT Develop your own process in accordance with the BPMN 2 standard Learn Process modeling best practices with Bonita BPM through live exercises http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- event?utm_ source=Sourceforge_BPM_Camp_5_6_15&utm_medium=email&utm_campaign=VA_SF _______________________________________________ Assp-user mailing list Assp-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/assp-user DISCLAIMER: ******************************************************* This email and any files transmitted with it may be confidential, legally privileged and protected in law and are intended solely for the use of the individual to whom it is addressed. This email was multiple times scanned for viruses. There should be no known virus in this email! ******************************************************* ------------------------------------------------------------------------------ BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT Develop your own process in accordance with the BPMN 2 standard Learn Process modeling best practices with Bonita BPM through live exercises http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- event?utm_ source=Sourceforge_BPM_Camp_5_6_15&utm_medium=email&utm_campaign=VA_SF _______________________________________________ Assp-user mailing list Assp-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/assp-user
