[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Loopback and multi-homed routing flaw in TCP/IP stack.

Subject: Re: Loopback and multi-homed routing flaw in TCP/IP stack.
From: Perry Harrington <pedward@WEBCOM.COM>
Date: Mon, 5 Mar 2001 18:43:05 -0800
Approved-By: aleph1@SECURITYFOCUS.COM
Delivered-To: bugtraq@lists.securityfocus.com
Delivered-To: bugtraq@securityfocus.com
In-Reply-To: <Pine.LNX.4.21.0103051816170.6928-100000@mail.hislinuxbox.net>; from ddowney@mail.hislinuxbox.net on Mon, Mar 05, 2001 at 06:18:33PM -0800
References: <20010305155956.A29340@webcom.com> <Pine.LNX.4.21.0103051816170.6928-100000@mail.hislinuxbox.net>
Reply-To: Perry Harrington <pedward@WEBCOM.COM>
Sender: Bugtraq List <BUGTRAQ@SECURITYFOCUS.COM>
User-Agent: Mutt/1.2.5i

I don't think the behavior should change because of DSR.  DSR is more useful
than 'rightness' in my opinion.  A switch to turn it off if you don't want it 
is
something I'd advocate, but the default should be 'on'.

--Perry

On Mon, Mar 05, 2001 at 06:18:33PM -0800, ddowney@mail.hislinuxbox.net wrote:
> On Mon, 5 Mar 2001, Perry Harrington wrote:
>
> > In short, yes security through obscurity is dumb, but calling for people 
>to change
> > this functionality is unwarranted when machines can be firewalled.
> >
>
>
> Actually to me this sounds more like an excuse NOT to fix the problem
> simply because it's "industry standard".
>
> Sometimes standards need to be looked at and revamped. In this case it's
> one that would affect the industry as a whole. Are you calling for
> advisories only simply because the workload would be tremendous or because
> you truly believe that fixing this would affect nothing?
>
>
> ---
> David D.W. Downey - RHCE
> Consulting Engineer
> Ensim Corporation
> david.downey@ensim.com
>
>

--
Perry Harrington                 Director of                   zelur xuniL  ()
perry at webcom dot com      System Architecture               Think Blue.  /\

PGP signature

Follow-Ups:
- Re: Loopback and multi-homed routing flaw in TCP/IP stack.
  - From: Ben Laurie <ben@ALGROUP.CO.UK>
- Re: Loopback and multi-homed routing flaw in TCP/IP stack.
  - From: Dan Harkless <dan-bugtraq@DILVISH.SPEED.NET>

References:
- Re: Loopback and multi-homed routing flaw in TCP/IP stack.
  - From: Perry Harrington <pedward@WEBCOM.COM>
- Re: Loopback and multi-homed routing flaw in TCP/IP stack.
  - From: ddowney@MAIL.HISLINUXBOX.NET
- Re: Loopback and multi-homed routing flaw in TCP/IP stack.
  - From: ddowney@MAIL.HISLINUXBOX.NET

Prev by Date: Re: Loopback and multi-homed routing flaw in TCP/IP stack.
Next by Date: Re: Loopback and multi-homed routing flaw in TCP/IP stack.
Prev by thread: Re: Loopback and multi-homed routing flaw in TCP/IP stack.
Next by thread: Re: Loopback and multi-homed routing flaw in TCP/IP stack.
Index(es):
- Date
- Thread