Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Vuln-Dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: ICMP Vulnerabilities

from [Dragos Ruiu] Network Security [Permanent Link]
Subject: Re: ICMP Vulnerabilities
Date: Thu, 7 Jul 2005 17:02:40 -0700 
On Thursday, 7 July 2005 J. Oquendo wrote:

This isn't news news, I've been tinkering with something along
these lines since 1999


Well you may have known about the problem, but you didn't fix it.
The news isn't the problem, it's the FIX. The fix which people haven't
applied to their OS distributions yet.

To reiterate:

On Wednesday, 6 July 2005 Theo de Raadt wrote:

Please read the article.


People saw the presentation at CanSecWest and had the same reaction.
Oh that... it's an old problem. Well, it's not really if you look carefully.
It's an important problem and it needs to be fixed. Maybe the right
solution is to just release the kiddy-exploit-code and melt down a 
few big ISPs for a couple of days so people stop parroting "It's an old 
problem" and get down to fixing it.

It seems to me that this perception problem is caused by skirting the issue
and being oblique about how to explicitly use this attack to cause harm.
People are ignoring the fix because they can't immediately see how to 
do the attack (it's somewhat subtle). Maybe what is needed is the 
Internet-Wide-Scale-DoS-HOWTO and people will finally apply 
the fix logic (which isn't that complicated as far as I can see).

But echoing "this is an old problem" isn't helping to propagate the fix.
So let's stop saying that.

Vendors, please fix your broken OSes.

cheers,
--dr

-- 
World Security Pros. Cutting Edge Training, Tools, and Techniques
Tokyo, Japan    November 15/16 2005  http://pacsec.jp
pgpkey http://dragos.com/ kyxpgp
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Security Advisory for Bugzilla 2.18.1 and 2.19.3, mkanat
Next by Date:  ToorCon 2005 Call for Papers, h1kari@toorcon.org
Previous by Thread:  Re: ICMP vulnerabilities, Bob Beck
Next by Thread:  Re: ICMP Vulnerabilities, Joachim Schipper
Indexes:  [Date] [Thread] [Top] [All Lists]