On Tuesday, February 18, 1997 1:52 PM, Ziv Dascalu[SMTP:ziv @
AbirNet .
com] wrote:
>
>--- On Tue, 18 Feb 1997 14:12:02 -0000 Frank O'Dwyer <frank .
odwyer @
sse .
ie> wrote:
>>Given that a packet with a source address of 127.0.0.1
>>can be forged and delivered (via SLIP or whatever) to the
>>target machine, is there any way to get a response packet
>>back to the attacker machine? In other words, is it reasonable
>>to assume this is _not_ possible (i.e. that routing will either try
>>to deliver the response locally or will just toss the response
>>packet on the floor). Will the incoming forged packet even get
>>delivered, or must IP forwarding be on for this? What about
>>on Windows '95 or on NT?
>
>Any attempt to send a packet to 127.0.0.1 will create a loop back on your machine
>TCOP/IP stack so it will not get out.
>even if you modify the stack itself most routers and for sure firewalls will
>not forward, they will be confused to think that it is their own packet.
I think Frank was talking about a packet with 127.0.0.1 as it's source address not destination.
--
Gene Lee
genel @
inforamp .
net
genelee @
vnet .
ibm .
com
|
|
