Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: To moderator - disregard my last post

from [Don Parker] Network Security [Permanent Link]
Subject: Re: To moderator - disregard my last post
Date: Mon, 3 Jan 2005 08:18:25 -0800 
Hi Bill

Well knowing the route to the computer in question will do you little good by
using loose source routing to get to it. Pretty much every router will/should
have LSRR packets dropped. This is in addition to the f/w probably screening
those out as well. With w2k and win xp there was a problem with these packets
being accepted and reversing the first hop, but once again these machines are
hidden behind the hardened exterior. Also I would imagine the admins would have
done the reg tweak to disable the acceptance of these packets at the OS level
also. Hope this helps.

Cheers,

Don

--------------------------------------------------------------
Don Parker, GCIA GCIH
Intrusion Detection & Incident Handling Specialist
Bridon Security & Training Services
http://www.bridonsecurity.com
voice: 1-613-302-2910
--------------------------------------------------------------

On Sun, 2 Jan 2005 21:23 , 'BillyBob' <billybobknob@hotmail.com> sent:


I misunderstood how Paratrace worked.  I found a GIAC study on it and now
understand it is for mapping subnets NAT'd behind a firewall.   It just
shows hop count to server I make a valid connection to.

What I would like to know is if you can route your packets to another host
on the same subnet as webserver by guessing its private IP now that you know
the route to it with Loose Source Routing?

Thanks for your patience,
Bill
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • Re: To moderator - disregard my last post, Don Parker <=
Previous by Date:  Routers, Switches, and Firewall testing, Greg Dreelin
Next by Date:  Re: Routers, Switches, and Firewall testing, Don Parker
Previous by Thread:  Routers, Switches, and Firewall testing, Greg Dreelin
Next by Thread:  Information Systems Security Assessment Framework (ISSAF) Draft0.1, Balwant Rathore
Indexes:  [Date] [Thread] [Top] [All Lists]