Hi Jochen,
--On Donnerstag, 29. Juli 2004 13:48 +0200 Jochen Vogel <[EMAIL PROTECTED]> wrote:
Is there any vulnerability if i doesn�t use aggresive mode?
My interpretation is "YES" - but I'm also not sure about this.
The difference is that you need to have a "real communication". The one-packet attack with aggressive mode is also possible with spoofed source addresses because you don't need any reply from the FW to arrive at your end.
regards
Joachim Bassmann, DELOS AG, Stuttgart, Germany ------------------------------------------------------------ Erst wenn das letzte Counterstrike indiziert, der letzte Videofilm verboten, und das Internet geschlossen ist, werdet Ihr merken, da� Ihr Eure Kinder doch erziehen m�sst. - [EMAIL PROTECTED]
================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
