IIRC the IP-stack on any host (router or not) will drop packets with the
source route option set if you enable the DisableIPSourceRouting. You in
most cases you do not want a source routed packet to hit your host ever.
In other words: Setting it will enhance security on any system.
Stefan Norberg
http://www.ora.com/catalog/securwinserv/
-----Ursprungligt meddelande-----
Från: Paul Greene [mailto:techlists (at) comcast (dot) net [email concealed]]
Skickat: den 7 mars 2003 01:37
Till: focus-ms (at) securityfocus (dot) com [email concealed]
Ämne: DisableIPSourceRouting registry key
Many security guides recommend enabling the "DisableIPSourceRouting"
registry key to stop source routed network attacks.
I would think that unless a server was used as a firewall or needed some
routing functionality that there wouldn't be any security benefit to
enabling this key.
IIRC the IP-stack on any host (router or not) will drop packets with the
source route option set if you enable the DisableIPSourceRouting. You in
most cases you do not want a source routed packet to hit your host ever.
In other words: Setting it will enhance security on any system.
Stefan Norberg
http://www.ora.com/catalog/securwinserv/
-----Ursprungligt meddelande-----
Från: Paul Greene [mailto:techlists (at) comcast (dot) net [email concealed]]
Skickat: den 7 mars 2003 01:37
Till: focus-ms (at) securityfocus (dot) com [email concealed]
Ämne: DisableIPSourceRouting registry key
Many security guides recommend enabling the "DisableIPSourceRouting"
registry key to stop source routed network attacks.
I would think that unless a server was used as a firewall or needed some
routing functionality that there wouldn't be any security benefit to
enabling this key.
Is there something I'm missing here?
PG
[ reply ]