*BSD News Article 51789


Return to BSD News archive

Path: euryale.cc.adfa.oz.au!newshost.anu.edu.au!harbinger.cc.monash.edu.au!simtel!zombie.ncsc.mil!paladin.american.edu!fizban.solace.mh.se!vampire.xinit.se!newsfeed.tip.net!news.seinf.abb.se!nooft.abb.no!Norway.EU.net!nntp-oslo.UNINETT.no!nntp-trd.UNINETT.no!due.unit.no!Steinar.Haug
From: Steinar.Haug@runit.sintef.no (Steinar Haug)
Newsgroups: comp.unix.bsd.freebsd.misc,comp.protocols.tcp-ip
Subject: Re: Faking Source IP Addresses?
Date: 27 Sep 1995 17:01:34 GMT
Organization: SINTEF RUNIT, Trondheim, Norway
Lines: 11
Message-ID: <STEINAR.HAUG.95Sep27180134@bokfink.runit.sintef.no>
References: <43te4l$ug@galaxy.ee.rochester.edu> <440kbd$hvj@uriah.heep.sax.de>
	<447jg5$1v3@palmer.demon.co.uk>
NNTP-Posting-Host: bokfink.runit.sintef.no
In-reply-to: gary@palmer.demon.co.uk's message of 26 Sep 1995 02:03:01 +0100
Xref: euryale.cc.adfa.oz.au comp.unix.bsd.freebsd.misc:6527 comp.protocols.tcp-ip:39195

> If you are talking about doing it on ethernet, you'll need access to
> the bpf devices in /etc to write raw packets out. That's probably the
> best way to do it, but also a massive security hole as any user level
> process on the machine could open the device and do it.

Fortunately, a normal user level process on a Unix system can *not* send
packets with arbitrary IP addresses. However, there are no such limitatations
for PCs...

Steinar Haug, SINTEF RUNIT, University of Trondheim, NORWAY
Email: Steinar.Haug@runit.sintef.no