RE: Traces
From: Fernando Gont (fernando_at_gont.com.ar)
Date: 01/06/04
- Previous message: Gary Gervasi: "Re: Simple Question ..."
- In reply to: Shawn Jackson: "RE: Traces"
- Next in thread: Shawn Jackson: "RE: Traces"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 06 Jan 2004 10:35:44 -0300 To: "Shawn Jackson" <sjackson@horizonusa.com>, "Meritt James" <meritt_james@bah.com>, Iain@mta1.horizonusa.com
At 11:26 05/01/2004 -0800, Shawn Jackson wrote:
> Personally I think this would only be, slightly, useful when
>automated and even then multiple sites off your network, backbone even,
>have to be under attack. Additionally it has to be from one system, or
>group of systems on the same netblock (CIDR or Subnet), which isn't too
>likely in this day-in-age.
Do you mean they should be in the same netblock in order to be practicable,
or what?
> Besides a corporate network or controlled networking environment
>I can't see this being too terribly useful. But then again this is
>coming from the guy who wants to beat script-kiddies up with a clue bat.
>Ending spoofing would be extremely useful, or at least finding out a way
>to locate the attackers when spoofing is being employed. Does IPv6 solve
>this issue? Personally I haven't had time to fully inspect the protocol.
Unfortunately, things like mobile-IP requires hosts to "legally" spoof IP
addresses.
This "spoofing" is required as there are problems in the Internet
architecure that have not been solved.
>I'm going to head to B&N sometime this week and see if they have that
>book, has anyone read it, is it any good?
I've read both the first and second editions (I think there's a third
edition by now).
It's interesting. You'll enjoy reading it.
(I've found some technical errors, and sometimes I got the feeling that the
authours get too excited, though)
>Now let the Out-Of-Office and
>Undeliverable messages come, come to me!!
BTW, I sent an e-mail to the owner of the list, proposing to:
a) Change the Return-Path field so that it points to the mail robot. This
would free us from getting "undeliverable message" errors.
b) Change the Reply-To field so that it points to the list, rather than the
poster of the message. IMHO, replying only to the poster is the exception,
*not* the rule.
Let's see what happens.... :-)
Best Regards,
-- Fernando Gont e-mail: fernando@gont.com.ar || fgont@acm.org --------------------------------------------------------------------------- Ethical Hacking at InfoSec Institute. Mention this ad and get $720 off any course! All of our class sizes are guaranteed to be 10 students or less. We provide Ethical Hacking, Advanced Ethical Hacking, Intrusion Prevention, and many other technical hands on courses. Visit us at http://www.infosecinstitute.com/securityfocus to get $720 off any course! ----------------------------------------------------------------------------
- Previous message: Gary Gervasi: "Re: Simple Question ..."
- In reply to: Shawn Jackson: "RE: Traces"
- Next in thread: Shawn Jackson: "RE: Traces"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
