Return to BSD News archive
Path: euryale.cc.adfa.oz.au!newshost.anu.edu.au!harbinger.cc.monash.edu.au!simtel!zombie.ncsc.mil!paladin.american.edu!fizban.solace.mh.se!vampire.xinit.se!newsfeed.tip.net!news.seinf.abb.se!nooft.abb.no!Norway.EU.net!nntp-oslo.UNINETT.no!nntp-trd.UNINETT.no!due.unit.no!Steinar.Haug From: Steinar.Haug@runit.sintef.no (Steinar Haug) Newsgroups: comp.unix.bsd.freebsd.misc,comp.protocols.tcp-ip Subject: Re: Faking Source IP Addresses? Date: 27 Sep 1995 17:01:34 GMT Organization: SINTEF RUNIT, Trondheim, Norway Lines: 11 Message-ID: <STEINAR.HAUG.95Sep27180134@bokfink.runit.sintef.no> References: <43te4l$ug@galaxy.ee.rochester.edu> <440kbd$hvj@uriah.heep.sax.de> <447jg5$1v3@palmer.demon.co.uk> NNTP-Posting-Host: bokfink.runit.sintef.no In-reply-to: gary@palmer.demon.co.uk's message of 26 Sep 1995 02:03:01 +0100 Xref: euryale.cc.adfa.oz.au comp.unix.bsd.freebsd.misc:6527 comp.protocols.tcp-ip:39195 > If you are talking about doing it on ethernet, you'll need access to > the bpf devices in /etc to write raw packets out. That's probably the > best way to do it, but also a massive security hole as any user level > process on the machine could open the device and do it. Fortunately, a normal user level process on a Unix system can *not* send packets with arbitrary IP addresses. However, there are no such limitatations for PCs... Steinar Haug, SINTEF RUNIT, University of Trondheim, NORWAY Email: Steinar.Haug@runit.sintef.no