[71158] in North American Network Operators' Group
Re: TCP-ACK vulnerability (was RE: SSH on the router)
daemon@ATHENA.MIT.EDU (Sean Donelan)
Thu Jun 10 07:20:11 2004
Date: Thu, 10 Jun 2004 07:19:44 -0400 (EDT)
From: Sean Donelan <sean@donelan.com>
To: nanog@merit.edu
In-Reply-To: <064f01c44eb4$bd102c10$6401a8c0@alexh>
Errors-To: owner-nanog-outgoing@merit.edu
On Wed, 9 Jun 2004, Alexei Roudnev wrote:
> This is minor exploit - usually you set up VLAN1 interface with IP addres,
> which is filterd out from outside. Moreover, there is not any good way to
> find switch IP - it is transparent for user's devices.
Yeah, port scanners are so rare on the Internet they'll never find your
IP address. Its not as if the switches have an easy to detect banner
signature, and everyone uses out-of-band management for all their network
equipment.
