[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: spoofing DNS..
- To: "'Tizmo'" <Tizmo(at-nospam)Newmail.Net>, linux-il(at-nospam)linux.org.il
- Subject: RE: spoofing DNS..
- From: Eddie Harari <eddieh(at-nospam)you-niversity.com>
- Date: Tue, 26 Dec 2000 19:34:28 +0200
- Delivered-To: linux.org.il-linux-il@linux.org.il
- Sender: linux-il-bounce(at-nospam)cs.huji.ac.il
lets put some things on the clear here please :
spoofing - 2 kind of spoofing ,
1. blind spoofing - you do not see the packets that come back to your
spoofed address.
2. non blind spoofing - you do see the contents of the packets that come
back to your server.( man in the middle attack ).
Blind spoofing is almost impossible to achive with current implementations
of TCP, ( guessing the syn with random syn
is very hard !).
UDP is easier but you need to know the contents of the returned packet
without seeing it !
( with nfs you can guess these packets and fake an NFS server like this
..).
non blind spoofing is very easy one you are in the middle. to achive the
position in the middle you need to
1. have an insider in the ISP .
2. hack internet routing tables.
3. work for an ISP and work your way from there ...
-----Original Message-----
From: Tizmo [mailto:Tizmo@Newmail.Net]
Sent: Tuesday, December 26, 2000 7:01 PM
To: linux-il@linux.org.il
Subject: Re: spoofing DNS..
lets say i want to connect to an irc server with a spoofed ip, can i do it ?
or i want to surf the web not with my real ip..
if i and if i cant tell me how can i send pings with a spoffed ip .. and
what is hping2 ?
----- Original Message -----
From: <ishaybas@netvision.net.il>
To: "'Tizmo'" <Tizmo@Newmail.Net>; <linux-il@linux.org.il>
Sent: Tuesday, December 26, 2000 6:35 PM
Subject: RE: spoofing DNS..
>
> depends what you want to do with it...
> don't forget that sending packets from a spoofed ip, will result in no
> replies...
> if you want to do a spoof icmp or udp attacks you can use hping2 for
> instance...
> question still stands, what are you trying to accomplish?
>
> -----Original Message-----
> From: linux-il-bounce@cs.huji.ac.il
> [mailto:linux-il-bounce@cs.huji.ac.il]On Behalf Of Tizmo
> Sent: Tuesday, December 26, 2000 6:24 PM
> To: linux-il@linux.org.il
> Subject: Re: spoofing DNS..
>
>
> i mean spoffing my ip
> ----- Original Message -----
> From: "Eddie Harari" <eddieh@you-niversity.com>
> To: "'Tizmo'" <Tizmo@Newmail.Net>; <linux-il@linux.org.il>
> Sent: Tuesday, December 26, 2000 2:24 PM
> Subject: RE: spoofing DNS..
>
>
> > what exactly do you mean by spoofing DNS ,
> >
> > reply to requests that came to your dns server with fault data ???
> > or spoof your IP ?
> >
> > -----Original Message-----
> > From: Tizmo [mailto:Tizmo@Newmail.Net]
> > Sent: Tuesday, December 26, 2000 12:24 PM
> > To: linux-il@linux.org.il
> > Subject: spoofing DNS..
> >
> >
> > hey list,
> > i heard about spoffing dns in linux .. like, changing your ip address to
> > what ever you like it to be.
> > i just wanted to know if it's true and if it is i really would like to
> know
> > how it's can be done.
> > thanks.
> >
> >
> > =================================================================
> > To unsubscribe, send mail to linux-il-request@linux.org.il with
> > the word "unsubscribe" in the message body, e.g., run the command
> > echo unsubscribe | mail linux-il-request@linux.org.il
> >
> > =================================================================
> > To unsubscribe, send mail to linux-il-request@linux.org.il with
> > the word "unsubscribe" in the message body, e.g., run the command
> > echo unsubscribe | mail linux-il-request@linux.org.il
> >
> >
>
>
> =================================================================
> To unsubscribe, send mail to linux-il-request@linux.org.il with
> the word "unsubscribe" in the message body, e.g., run the command
> echo unsubscribe | mail linux-il-request@linux.org.il
>
>
>
> =================================================================
> To unsubscribe, send mail to linux-il-request@linux.org.il with
> the word "unsubscribe" in the message body, e.g., run the command
> echo unsubscribe | mail linux-il-request@linux.org.il
>
>
=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il
=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il