Dear all, like described in the named ID 11834: "The remote host accepts loose source routed IP packets. The feature was designed for testing purpose. An attacker may use it to circumvent poorly designed IP filtering and exploit another flaw. However, it is not dangerous by itself.
Solution : drop source routed packets on this host or on other ingress routers or firewalls. " on a Solaris 9 there is set ip_forward_src_routed 0 in /etc/rc2.d/S68_whatever Nevertheless I see the message in my nessus report. Is there anyone, having an Idea? Thank you. -- NCSISU Non Certified Security Information Systems User NEU: Telefon-Flatrate fürs dt. Festnetz! GMX Phone_Flat: 9,99 Euro/Mon.* Für DSL-Nutzer. Ohne Providerwechsel! http://www.gmx.net/de/go/telefonie _______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
