Great Circle Associates Firewalls
(October 1992) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: icmp considered dangerous ?
From: jim @ tadpole . com (Jim Thompson)
Date: Thu, 29 Oct 92 07:16:24 CST
To: Firewalls @ GreatCircle . COM, chytil @ eunet . co . at 
It (icmp, via ICMP_ECHO (request)  and ICMP_ECHOREPLY) 
could be used to 'probe' your network.

A 'badguy' seding lots of SOURCEQUENCH packets could provoke
denial of service conditions.

To say nothing of the number of Sun machines that still crash
given any packet with options in it, or covert channels that could
be constructed out of icmp messages.

Jim
Indexed By Date Previous: icmp considered dangerous ?
From: Georg Chytil <chytil @ hp4at . eunet . co . at>
Next: liabilities of ports >1023
From: "USA::JMA21624" <JMA21624%USA . decnet @ usav01 . glaxo . com>
Indexed By Thread Previous: icmp considered dangerous ?
From: Georg Chytil <chytil @ hp4at . eunet . co . at>
Next: Re: icmp considered dangerous ?
From: Brent Chapman <brent @ GreatCircle . COM>
Google
 
Search Internet Search www.greatcircle.com