[3859] in North American Network Operators' Group
Re: Access to the Internic Blocked -- LSRR, traceroute with ICMP
daemon@ATHENA.MIT.EDU (Edward Henigin)
Fri Aug 23 22:13:43 1996
Date: Thu, 22 Aug 1996 00:38:17 -0500 (CDT)
From: Edward Henigin <ed@texas.net>
To: Vadim Antonov <avg@quake.net>
cc: nanog@merit.edu
In-Reply-To: <199608220449.VAA00216@quest.quake.net>
Speaking of which, is anyone going to implement traceroute
for UNIX which using icmp echo requests, instead of (semi-)random
udp packets, as the ammo? This is one way which I think Microsoft out
did the old UNIX implementations.
The combination of the above and the below would give us
the usefulness we want and the security we want. (I don't think
the below would work with Van Jacobsen's traceroute 1.2)
On Wed, 21 Aug 1996, Vadim Antonov wrote:
> On itself, LSRR is a godsend to hackers (i can think of about
> a dozen of very nasty attacks using general LSRR). The only
> useful application for it is traceroute.
>
> Why don't router vendors provide an option to turn it
> off for everything but ICMP ECHO?
>
> --vadim
--CAA27253.840791652/tera.mcom.com--
