> 2.2 is vulnerable, but 2.4 is not. as far as i can tell, 2.4 systems > don't even have a localhost routing entry anymore. We've been testing with a kernel 2.2.16 victim, which is standard with RH7.0 and an attacker with kernel 2.0.34. I can see packets comming in from the attacker, but the kernel does not respond to these. We also set up an attacker with kernel 2.2.16 and tried the same attack. No packets arrive on the victim. jeroen & christian
S/MIME Cryptographic Signature- Loopback and multi-homed routing flaw in TCP/IP stack. Woody
- Re: Loopback and multi-homed routing flaw in TCP/IP ... Elias Levy
- Re: Loopback and multi-homed routing flaw in TCP/IP ... Kyle Sparger
- Re: Loopback and multi-homed routing flaw in TCP/IP ... Perry Harrington
- Re: Loopback and multi-homed routing flaw in TCP... ddowney
- Re: Loopback and multi-homed routing flaw in... Perry Harrington
- Re: Loopback and multi-homed routing fla... Ben Laurie
- Re: Loopback and multi-homed routin... Perry Harrington
- Re: Loopback and multi-homed ro... Ben Laurie
- Re: Loopback and multi-homed routing fla... Dan Harkless
- Re: Loopback and multi-homed routing flaw in TCP... ddowney
