*BSD News Article 51776


Return to BSD News archive

Path: euryale.cc.adfa.oz.au!newshost.anu.edu.au!harbinger.cc.monash.edu.au!news.uwa.edu.au!classic.iinet.com.au!news.uoregon.edu!cuhknntp!hpg30a.csc.cuhk.hk!agate!howland.reston.ans.net!tank.news.pipex.net!pipex!news.mathworks.com!news.kei.com!travelers.mail.cornell.edu!cornellcs!rochester!galileo.cc.rochester.edu!ceas.rochester.edu!ceas.rochester.edu!not-for-mail
From: iyengar@galaxy.ee.rochester.edu (Manu Iyengar)
Newsgroups: comp.unix.bsd.freebsd.misc,comp.protocols.tcp-ip
Subject: Faking Source IP Addresses?
Date: 22 Sep 1995 00:30:13 -0400
Organization: University of Rochester, School of Engineering
Lines: 8
Message-ID: <43te4l$ug@galaxy.ee.rochester.edu>
NNTP-Posting-Host: galaxy.ee.rochester.edu
Summary: fun with packets
Xref: euryale.cc.adfa.oz.au comp.unix.bsd.freebsd.misc:6521 comp.protocols.tcp-ip:39189

Out of curiosity: could a _user-level_ process send a packet claiming to be
from some arbitrary IP address (not its own)? This doesn't seem possible
through any options setable on a raw socket, though you can make up a lot of
the other IP header information and packet data, obviously. Is this a
made-impossible-by-the-protocol-implementation thing?

Manu Iyengar