Re: SSH auto trust all host keys,how to?
- From: "Richard E. Silverman" <res@xxxxxxxx>
- Date: 14 Jun 2006 11:26:34 -0400
"Chuck" == Chuck <skilover_nospam@xxxxxxxxxxxxxx> writes:
Chuck> To fake (spoof) an IP in windows takes about 20
Chuck> seconds. Control Panel - Network Connections - Local Area
Chuck> Connection - Properties - TCP/IP Protocol, Properties - Use the
Chuck> Following IP Address. You can enter whatever you want there.
You are oversimplifying. It is simple to set another address; it is not
so simple to use it. This by itself won't help you unless the host you're
trying to spoof is on the same IP network as you, since otherwise the
return traffic of the TCP connection will not come back to you. Even so,
frequently there will be outbound filters on an enclosing network
preventing your spoofed packets from even leaving, since their source addresses
do not lie in the correct networks. And if the spoofed host is up at the
same time, your computer will probably refuse to use the address, due to
detecting via ARP traffic that another host is using the address; you'd
need special exploit software.
It's a bad idea to rely on source IP addresses for security, but at the
same time let's not overstate the reality of the problem.
--
Richard Silverman
res@xxxxxxxx
.
- Follow-Ups:
- Re: SSH auto trust all host keys,how to?
- From: Chuck
- Re: SSH auto trust all host keys,how to?
- References:
- SSH auto trust all host keys,how to?
- From: SSKillZ
- Re: SSH auto trust all host keys,how to?
- From: Michael Heiming
- Re: SSH auto trust all host keys,how to?
- From: SSKillZ
- Re: SSH auto trust all host keys,how to?
- From: Chuck
- Re: SSH auto trust all host keys,how to?
- From: Chuck
- SSH auto trust all host keys,how to?
- Prev by Date: Re: SSH auto trust all host keys,how to?
- Next by Date: Optimizing SFTP for high latency connection
- Previous by thread: Re: SSH auto trust all host keys,how to?
- Next by thread: Re: SSH auto trust all host keys,how to?
- Index(es):
Relevant Pages
|
|
