[FUGSPBR] OFF - The Security Flag in the IPv4 Header
Jarbas de Freitas Peixoto
jarbas em acmesecurity.org
Ter Abr 1 12:56:55 BRT 2003
On Tuesday 01 April 2003 12:08, Antonio Torres wrote:
??? 1º de Abril?? :-p
> engraçado, ainda não bebi nada (alcoólico) hoje.
>
> deixa eu ver se entendi: se eu quiser 'escrever' um programa de ataque,
> digamos para quebrar um firewall, tenho que 'setar' esse bit para avisar o
> firewall que meus pacotes *são* um ataque ??
>
> É, talvez seja o elevado teor de sangue na minha corrente alcoólica......
>
> Falando sério : de onde veio isso ??
>
> > > 3. Setting the Evil Bit
> > >
> > > There are a number of ways in which the evil bit may be set. Attack
> > > applications may use a suitable API to request that it be set.
> > > Systems that do not have other mechanisms MUST provide such an API;
> > > attack programs MUST use it.
> > >
> > > Multi-level insecure operating systems may have special levels for
> > > attack programs; the evil bit MUST be set by default on packets
> > > emanating from programs running at such levels. However, the system
> > > MAY provide an API to allow it to be cleared for non-malicious
> > > activity by users who normally engage in attack behavior.
--
*******************************************************
Jarbas de Freitas Peixoto
ACME! - Computer Security Research
jarbas em acmeisecurity.org
http://www.acmesecurity.org
UNESP/IBILCE - São José do Rio Preto - SP
*******************************************************
_______________________________________________________________
Sair da Lista: http://www2.fugspbr.org/mailman/listinfo/fugspbr
Historico: http://www4.fugspbr.org/lista/html/FUG-BR/
Mais detalhes sobre a lista de discussão freebsd