Slashdot Mirror

← Back to Stories (view on slashdot.org)

Examining ICMP Flaws

Posted by samzenpus on from the under-the-microscope dept.

An anonymous reader writes "A recent internet-draft pointed out a number of security flaws in the design of the ICMP protocol. Most open source projects and vendors have addressed the flaws to some level, but this interesting article on KernelTrap examines the true extent of the problem, and how so far only OpenBSD has implemented all possible counter-measures. Theo de Raadt is quoted saying, "here we have a 20 year old protocol, a part of the Internet infrastructure that hasn't been touched in 10 years and we were all sure was right, and now is cast in doubt.""

9 of 238 comments (clear)

  1. Flaws with ICMP by cmburns69 · · Score: 1, Funny

    Heh.. I read ICMP as "I see 'em pee"

    --
    Online Starcraft RPG? At
    Dietary fiber is like asynchronous IO-- Non-blocking!
    1. Re:Flaws with ICMP by fsterman · · Score: 3, Funny

      And how nicely ironic the 13,000,000nth post is..

      --
      Is there anything better than clicking through Microsoft ads on Slashdot?
    2. Re:Flaws with ICMP by Anonymous Coward · · Score: 1, Funny

      Does he win a free iPod?

    3. Re:Flaws with ICMP by Anonymous Coward · · Score: 1, Funny

      Hey, 13,000,000 - you rule! Look Ma! I'm replying to a celebrity! This is almost as leet as Wil Wheaton replying to me.

  2. ICMP... by Jugalator · · Score: 4, Funny

    In that case... I See More Patches. :-(

    --
    Beware: In C++, your friends can see your privates!
  3. IYAMWETAWDED by Anonymous Coward · · Score: 3, Funny

    Please google TCP/IP, then quiz yourself against your grandmother. If she knows more than you about how networks operate, read more. Once you manage to outwit her you are free to state your apologies here.

  4. Dishes and Cilinders by HermanAB · · Score: 2, Funny

    Actually, first the world was dish shaped, then it was cilindrical, but the God Atlas has been carrying a globe on his shoulder for about 2500 years already. The American view of the world as a flat Pizza, is very modern...

    --
    Oh well, what the hell...
  5. Re:Theo by Anonymous Coward · · Score: 1, Funny
    I tried to be a Christian, but I kept getting packets where I couldn't figure out if the message was coming from Jesus H Christ or Lucifer D Satan. When Jesus started telling me to paint myself with goats' blood and burn my neighbors to ashes as a sacrifice, I started to get suspicious.

    Until prayer is transmitted over a secure medium, or uses robust end-to-end encryption (or better yet: BOTH!), I have to recommend against religion. And even then, there's always the risk of quantum crypyanalysis, lurking like a boogieman just around the corner. You just never know.

    I think the thing to do in the mean time, is keep going to as many PGP keysigning parties as possible. One of these days, I will have three moderately trusted introducers who claim to have personally met and cross-signed with Jesus. Then maybe I'll finally be able to have a little chat with the divine forces, without worrying about the FBI running their usual MitM operation.

  6. Re:This is ridiculous! by Hal_Porter · · Score: 2, Funny

    Legal threats followed by job offers?

    Pussies. Microsoft would have just hired hitmen to kill the guy.

    --
    echo -e 'global _start\n _start:\n mov eax, 2\n int 80h\n jmp _start' > a.asm; nasm a.asm -f elf; ld a.o -o a;