> -----Original Message-----
> From: Reckhard, Tobias [mailto:[EMAIL PROTECTED]]
> Sent: Monday, 11 December 2000 6:10
> To: 'Ben Nagy'
> Cc: [EMAIL PROTECTED]
> Subject: RE: Simple Pimple firewalls
>
>
> Ben Nagy wrote:
[...]
> > Has there been anything anyone has noticed that has
> been a "pure"
> > state-keeping error?
> >
> There was an error in Linux ipchains that was noticed in
> March on Bugtraq
> (3/28/2000) which allowed an outsider to modify the ipmasq
> table by sending
> UDP packets to the ipmasq'ing gateway with the destination
> port set to the
> source port it had used for an outgoing masqueraded UDP
> packet. The ipmasq
> box would only check the destination port on incoming UDP
> packets to that
> port and set its masquerading rulebase according to the
> information from
> those packets.
Ahhh...that was a mistake. 8) Nice catch!
> Cheers,
> Tobias
Cheers,
--
Ben Nagy
Marconi Services
Network Integration Specialist
Mb: +61 414 411 520 PGP Key ID: 0x1A86E304
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
