[3874] in North American Network Operators' Group
Re: Access to the Internic Blocked
daemon@ATHENA.MIT.EDU (Vadim Antonov)
Sat Aug 24 00:50:58 1996
Date: Thu, 22 Aug 1996 18:49:39 -0700
From: Vadim Antonov <avg@quake.net>
To: gih@aarnet.edu.au, jhawk@bbnplanet.com
Cc: nanog@merit.edu
Thre reason why traceroute uses UDP instead of ICMP is
very simple -- there are a lot of broken-as-designed
unices which either do not provide non-superuser access
to harmless ICMP facilities, or cannot trace replies back
to originating process.
I'd rather fix operating systems than leaving a nice big
vulnerability in the network.
--vadim
>From avg Thu Aug 22 17:36:34 1996
Subject: Re: Access to the Internic Blocked
To: Geoff Huston <gih@aarnet.edu.au>
Date: Thu, 22 Aug 1996 01:52:45 -0400 (EDT)
From: John Hawkinson <jhawk@bbnplanet.com>
Cc: nanog@merit.edu
> >On itself, LSRR is a godsend to hackers (i can think of about
> >a dozen of very nasty attacks using general LSRR). The only
> >useful application for it is traceroute.
> >
> >Why don't router vendors provide an option to turn it
> >off for everything but ICMP ECHO?
>
> Personally I find this an excellent suggestion.
So now I need to hack my traceroute to send ICMP_ECHO_REQUESTS instead
of high-port udp packets?
Oh well, I guess we can put this right next to the patches to have
traceroute send TCP SYNs to get through stupid firewalls.
--jhawk
--TAA11899.840766405/tera.mcom.com--
