You bring up an interesting point. However something like mode line/character is only available to you once the initial telnet negotiations have taken place. So from a practical point of view I don't think that this would help detect this.
--- Brett Lymn <[EMAIL PROTECTED]> wrote: > According to Randy Smith: > > > >. The former > >would likely arrive as a single packet per protocal > message, while the > >latter would likely arrive as a single character > per packet (Telnet > >generally does not buffer lines). > > > > Oh but it does if you do a "mode line" at the telnet > command prompt. > This allows you to compose the whole line at once > and then send it > which would invalidate the character at a time > check. > > Also, you don't need to use telnet to do the forgery > anyway - you can > use something like netcat which would bypass the > telnet protocol check. > > > -- > =============================================================================== > Brett Lymn, Computer Systems Administrator, BAE > SYSTEMS > =============================================================================== > > > _______________________________________________ > Firewalls mailing list > [EMAIL PROTECTED] > http://lists.gnac.net/mailman/listinfo/firewalls __________________________________________________ Do You Yahoo!? Yahoo! Tax Center - online filing with TurboTax http://http://taxes.yahoo.com/ _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
