[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

spoofing non-routeable addresses

To: tech_(_at_)_openbsd_(_dot_)_org
Subject: spoofing non-routeable addresses
From: Stefan Berg <stefan_(_dot_)_berg_(_at_)_cubical_(_dot_)_fi>
Date: Fri, 12 Apr 2002 11:14:21 +0300

Hello,

Creating a socket and binding it to the loopback address for a
non-listening socket have the side effect that it is possible to send
packets where the source address is the bound-to address and not the
routed-via interface address. E.g. create a socket, bind it to 127.0.0.1
and connect to a server with a valid address and we are sending packets
like

10:52:35.160047 127.0.0.1.49011 > 194.71.11.20.21: S
2040416480:2040416480(0) win 16384 <mss 1460,nop,nop,sackOK,nop,wscale
0,nop,nop,timestamp 723427440 0> (DF)

Is this the intended behavior, or should it be construed as a bug in
the BSD IP stack? An alternative would be having connect(2) return an
error when using a non-routeable source address.

Stefan

Prev by Date: How to extract OpenBSD source code from CD
Next by Date: Re: How to extract OpenBSD source code from CD
Previous by thread: Re: How to extract OpenBSD source code from CD
Next by thread: Re: spoofing non-routeable addresses
Index(es):
- Date
- Thread

Visit your host, monkey.org