Stephen Lloyd wrote:
>
> I received a spam today and I told my isp about it and the man said it's
> not possible to fake an ip address. Is he correct?
> if so, why do people spam if they can be traced by looking at some ip
> addresses?
He is not correct.
Stealing IPs manual: (btw this is done as root from a linux box)
-tpcdump | grep arp
-watch for a line saying: arp who-has <hostname1> (x:x:x:x:x:x) tell
<hostname2>
(x=hex number)
-ping <hostname1> & record the IP.
-ifconfig eth0 IP netmask <netmask> hw ether x:x:x:x:x:x up
and that's it. you do have to do you're normal network config stuff
(like adding routes) but this does most of the trick.
<LEGAL NOTICE>
You're sysadmin might not like this. It was only an example of the
possibility of fakeing IP's. _Do_ try it at home, not at work.
If you get in trouble you've been warned. I will not be held liable
under any circumstances.
</LEGAL NOTICE>
I somehow like typing Legal Stuff :)
--
Casper Gielen
[EMAIL PROTECTED]
--
I think hacking a birthday card (my birthday card, at that) is truly
a new low. Get thee back to kernels, Alan. Telsa Cox
To unsubscribe from SURVPC send a message to [EMAIL PROTECTED] with
unsubscribe SURVPC in the body of the message.
Also, trim this footer from any quoted replies.
More info can be found at;
http://www.softcon.com/archives/SURVPC.html
