Ofir posted this to a few mailing lists. Its an interesting paper on ICMP and
what you can do with it. I thought it might be relevant for a few people.
-dan
Ofir Arkin wrote:
> I am pleased to announce the release of version 2.5 of my research paper
> "ICMP Usage In Scanning".
>
> From the Introduction:
> "The Internet Control Message Protocol may seem harmless at first glance.
> Its goals and features were outlined in RFC 792 (and than later cleared in
> RFCs 1122, 1256, 1349, 1812), as a way to provide a means to send error
> messages, troubleshoot networking problems, and more.
>
> There is no consent between the experts in charge for securing Internet
> networks (Firewall Administrators, Network Administrators, System
> Administrators, Security Officers, etc.) regarding the actions that should
> be taken to secure their network infrastructure in order to prevent those
> risks.
>
> The risks involved in implementing the ICMP protocol in a network, regarding
> scanning, are the subject of this research paper".
>
> The paper can be downloaded from http://www.sys-security.com.
> http://www.sys-security.com/archive/papers/ICMP_Scanning_v2.5.pdf. ~967kb.
> http://www.sys-security.com/archive/papers/ICMP_Scanning_v2.5.ps. ~4.1mb.
>
> Merry Christmas
>
> Ofir Arkin
> [EMAIL PROTECTED]
> http://www.sys-security.com
> PGP CC2C BE53 12C6 C9F2 87B1 B8C6 0DFA CF2D D360 43FA
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
