Firewalls: The IP spoofing/hijacking attack

Firewalls
(January 1995)

Indexed By Thread: [Previous] [Next]

Subject:	The IP spoofing/hijacking attack
From:	Karyn Pichnarczyk <karyn @ cheetah . llnl . gov>
Date:	Mon, 23 Jan 1995 14:50:37 -0800
To:	firewalls @ GreatCircle . COM

This sort of attack reinforces the need of host level security, even
if you have a firewall protecting your network.  Some people think
they do not need to apply security patches to machines inside the
firewall, but if those patches were in place, then it would be more
difficult for the intruder to gain root on compromised machines.
(Note I said more difficult, not impossible).  

What is the phrase used?  A firewall is a hard, crunchy exterior, but
be sure not to have a soft, chewy inside just in case the exterior
gets cracked somehow.

Karyn

DISCLAIMER: I speak for myself, not my employers.

Indexed By Date	Previous:	Re: Hijacking tool From: jim @ Tadpole . COM
Indexed By Date	Next:	Re: CERT advisory From: asp @ uunet . uu . net (Andrew Partan)
Indexed By Thread	Previous:	poll/select in udprelay (was: Re: proxy-archie) From: Brian Clapper <bmc @ telebase . com>
Indexed By Thread	Next:	address spoof/no return packets From: jon @ nytimes . com (Jon E. Price)