Firewalls: Re: anybody know of any vulnerabilities with "echo"

Firewalls
(February 1996)

Indexed By Thread: [Previous] [Next]

Subject:	Re: anybody know of any vulnerabilities with "echo"
From:	Michael Baumann <baumann @ proton . llumc . edu>
Date:	Thu, 8 Feb 1996 13:52:27 -0800 (PST)
To:	"Jason L. Haar" <jason @ OiT . co . uk>
Cc:	brian @ ilinx . bctel . net, brian_murrell @ bctel . net, firewalls @ GreatCircle . COM
In-reply-to:	<Pine . LNX . 3 . 91 . 960208091734 . 3024B-100000 @ pris . OiT . co . uk>

On Thu, 8 Feb 1996, Jason L. Haar wrote:

> > 
> > 	I'm wondering if a new vulnerablity with the (a particular implementation
> > maybe) echo server has been found.  Anybody else notice this trend??
> > 
> 
> I wonder, this smells heavily of the "Harverst cache Web server". 
> Harvest uses some pretty wild checks on upstream web sites to see if 
> they're up or not - the default is to "ping" the host using UDP echo 
> packets - that could be what you're seeing.
> 
> Of course, it goes without saying that such sites shouldn't set up such 
> things without ASKING those sites first...
I kinda doubt it.. it seems like most of the packets that I have seen
are coming from PPP accounts. [ Why am I not suprised?]

--
Michael Baumann    
Electus Technology Inc.	/ Loma Linda University Medical Center
San Bernardino, California. (909)799-8308 |Internet: baumann @
 llumc .
 edu

Indexed By Date	Previous:	RPC through a firewall From: RUNTERD @ MAIL . STATE . WI . US
Indexed By Date	Next:	Re: Most Secure Unix? From: D . Thomas @ vthrc . uq . edu . au (Danny Thomas)
Indexed By Thread	Previous:	Re: anybody know of any vulnerabilities with "echo" From: Frank Willoughby <frankw @ in . net>
Indexed By Thread	Next:	Re: anybody know of any vulnerabilities with "echo" From: "Joe Smith (Really!)" <joey @ gxl . woodtech . com>