Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Penetration Testing: Re: Tool for source routing

Re: Tool for source routing

From: Marius Huse Jacobsen <mahuja_at_c2i.net>
Date: Thu, 7 Jun 2001 16:11:28 +0200

> > That is, it should replace the source addr with a spoofed one, and add the
> > real one as a source route.
>
> That implies that you're trying to spoof your source address, and get the
> victim machine to source-route back [to|through] the real attacker IP.
> It doesn't work that way. Only the originator of a packet gets to specify
> that source routing is on. I know of no way to force a victim to use
> source routing.

I believe at least some platforms place source routing opposite to the one
used in the original packet. Which means they will more or less reverse the
path taken by the original (attacker) packet.
Received on Jun 07 2001

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos