Re: Remote DoS in Axent's Raptor 6.0

From: der Mouse (mouseat_private)
Date: Wed Oct 27 1999 - 13:25:43 PDT

Next message: Luciano Martins: "WFTPD v2.40 FTPServer remotely exploitable buffer overflow"

Previous message: jaimecat_private: "Re: IBM AIX Packet Filter module"
Maybe in reply to: Mike Frantzen: "Remote DoS in Axent's Raptor 6.0"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> OTOH, anybody who truly cares about security is blocking _all_ IP
> options at their border router, long before the packet is seen by any
> firewall.

Thereby breaking any number of useful things that can be done with
things like timestamp options.

If you really care about security, use bloody decent OSes so that you
don't flippin' *need* to block IP options, you don't *need* a firewall!
Options are there because they're useful and support valuable
facilities.  Block 'em if you like, but you'll get no sympathy from
*me* when something breaks for you as a result.

					der Mouse

			       mouseat_private
		     7D C8 61 52 5D E7 2D 39  4E F1 31 3E E8 B3 27 4B

Next message: Luciano Martins: "WFTPD v2.40 FTPServer remotely exploitable buffer overflow"
Previous message: jaimecat_private: "Re: IBM AIX Packet Filter module"
Maybe in reply to: Mike Frantzen: "Remote DoS in Axent's Raptor 6.0"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 15:09:05 PDT