[FUGSPBR] OFF - The Security Flag in the IPv4 Header

Jarbas de Freitas Peixoto jarbas em acmesecurity.org
Ter Abr 1 12:56:55 BRT 2003


On Tuesday 01 April 2003 12:08, Antonio Torres wrote:

??? 1º de Abril??  :-p

> engraçado, ainda não bebi nada (alcoólico) hoje.
>
> deixa eu ver se entendi: se eu quiser 'escrever' um programa de ataque,
> digamos para quebrar um firewall, tenho que 'setar' esse bit para avisar o
> firewall que meus pacotes *são* um ataque ??
>
> É, talvez seja o elevado teor de sangue na minha corrente alcoólica......
>
> Falando sério : de onde veio isso ??
>
> > > 3. Setting the Evil Bit
> > >
> > >    There are a number of ways in which the evil bit may be set.  Attack
> > >    applications may use a suitable API to request that it be set.
> > >    Systems that do not have other mechanisms MUST provide such an API;
> > >    attack programs MUST use it.
> > >
> > >    Multi-level insecure operating systems may have special levels for
> > >    attack programs; the evil bit MUST be set by default on packets
> > >    emanating from programs running at such levels.  However, the system
> > >    MAY provide an API to allow it to be cleared for non-malicious
> > >    activity by users who normally engage in attack behavior.

-- 
*******************************************************
          Jarbas de Freitas Peixoto
     ACME! - Computer Security Research
          jarbas em acmeisecurity.org
         http://www.acmesecurity.org
  UNESP/IBILCE - São José do Rio Preto - SP
*******************************************************

_______________________________________________________________
Sair da Lista: http://www2.fugspbr.org/mailman/listinfo/fugspbr
Historico: http://www4.fugspbr.org/lista/html/FUG-BR/



Mais detalhes sobre a lista de discussão freebsd