Re: 127.0.0.1 and eth0?

Thomas Koenig (ig25@mvmap66.ciw.uni-karlsruhe.de)
Fri, 1 Aug 1997 09:58:39 +0200 (MET DST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Fyodor Yarochkin: "Re: Samba"
Previous message: Fyodor Yarochkin: "Re: Re[2]: Office for Linux"

Alan Cox wrote:
>> Is it possible that an attacker can send packets which appear to be
>> originating from 127.0.0.1 over an Ethernet?
>
>An attacker can send anything they like.
>
>> If so, what kind of firewall rules can I set to prevent this?
>
>Assuming its outside attackers

I don't think I was very specific in my request. I am assuming somebody
is able to insert packets on the local Ethernet (via an unsecured PC,
for example), and I'd like to be able to drop these via firewalling
rules on my Linux 2.0 box.

Is that possible? Can I say "disregard anything via eth0 from 127.*"?

-- 
Thomas Koenig, Thomas.Koenig@ciw.uni-karlsruhe.de, ig25@dkauni2.bitnet.
The joy of engineering is to find a straight line on a double
logarithmic diagram.

Next message: Fyodor Yarochkin: "Re: Samba"
Previous message: Fyodor Yarochkin: "Re: Re[2]: Office for Linux"