[11759] in North American Network Operators' Group
Re: [nsp] known networks for broadcast ping attacks
daemon@ATHENA.MIT.EDU (Charles Sprickman)
Tue Aug 12 02:56:22 1997
Date: Tue, 12 Aug 1997 02:42:21 -0400 (EDT)
From: Charles Sprickman <spork@inch.com>
To: Jon Lewis <jlewis@inorganic5.fdt.net>
cc: nanog@merit.edu
In-Reply-To: <Pine.LNX.3.95.970812012933.600N-100000@inorganic5.fdt.net>
On Tue, 12 Aug 1997, Jon Lewis wrote:
> This may be true, but what's to stop the writers of smurf and the other
> programs from distributing version 2 with all new network addresses?
> Fixing the 119 networks used to attack FDT will help, but I doubt it will
> solve the problem.
>
When I type "no ip source route" on a Cisco, what exactly is that doing
for me? Is it just disallowing the router itself to generate
source-routed packets or is it saying sink all source-routed packets?
All this talk of spoofing is getting me a bit confused. What exactly is
the difference between source-routing and spoofing?
Just trying to understand a bit more,
Charles
~~~~~~~~~ ~~~~~~~~~~~
Charles Sprickman Internet Channel
INCH System Administration Team (212)243-5200
spork@inch.com access@inch.com
