Great Circle Associates Firewalls
(November 1995) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: Spoofing ISDN
From: Jim McBride <jim @ basic . net>
Date: Thu, 2 Nov 1995 04:12:02 -0600 (CST)
To: Edward Maillet <maillet @ doc . cs . usm . maine . edu>
Cc: firewalls @ GreatCircle . COM
In-reply-to: <9511020049 . AA25854 @ doc . cs . usm . maine . edu> 

On Wed, 1 Nov 1995, Edward Maillet wrote:

> Hey All,
>   Some folks at work want to setup an ISDN dial-in connection relying
> solely on the inbound caller ID as the security measure. Is it possible
> to spoof the D channel to send fake info? I'm fairly certain there is
> a way to do it. Can anyone point me to some references so I can make a
> decent technical argument agaisnt this?
> Thanx.
> 
> ----- Ed Maillet
> maillet @
 cs .
 usm .
 maine .
 edu
> 
> 
Well since neither the caller id info nor the CLID are generated by any 
on premise equipment -- the only thing you would have to worry about is 
someone playing switch pranks...and even then I dont think you could 
''spoof'' a circuit since a bri's cid is its ''phone number'' which is
the broadcast ascii string. 

And I dont believe the switch will pass clid packets straight through
anyway, even if you did come up with someway to generate them on premise.

So -- my answer would be no, not by any technical means that I can think of.


Jim McBride
jim @
 basic .
 net
References:
  • Spoofing ISDN
    From: Edward Maillet <maillet @ doc . cs . usm . maine . edu>
Indexed By Date Previous: Re: Man in the Middle Attacks (Over rated?)
From: sedayao @ argus . intel . com (Jeffrey C. Sedayao)
Next: Re: PC vs Workstation Firewall
From: "Johnson-Bryden, Ian" <IJB @ saicuk . co . uk>
Indexed By Thread Previous: Spoofing ISDN
From: Edward Maillet <maillet @ doc . cs . usm . maine . edu>
Next: Re: Spoofing ISDN
From: Mark <mark @ lochard . com . au>
Google
 
Search Internet Search www.greatcircle.com