Slashdot Mirror

← Back to Stories (view on slashdot.org)

Can You Spoof IP Packets?

Posted by ryuzaki0 on from the something-to-think-about dept.

nweaver writes "Spoofed IP packets are still believed to be a significant problem for the Internet. But are they? The Spoofer Project is attempting to measure the problem. Apparently, 80% of the IP addresses measured no longer support spoofing! Their methodology is simple: have users download a client which attempts to spoof packets to the monitor. Using these packets, they can determine the filter rules. So everyone, download the client and help!"

26 of 211 comments (clear)

  1. Oh yes! by aardwolf64 · · Score: 5, Funny

    Oh yes! Everyone download this executable from known IP Spoofers and run it. It won't root your system, we promise...

    1. Re:Oh yes! by gEvil+(beta) · · Score: 5, Funny

      Well, at least your system would be rooted by people from MIT. It's comforting to know that you've been rooted by some of the best...

      --
      This guy's the limit!
    2. Re:Oh yes! by Anonymous Coward · · Score: 3, Funny

      Don't worry, the posted the md5 hashes of the binaries. As long as the match up, you can rest assured you are safe.

    3. Re:Oh yes! by Duds · · Score: 3, Funny

      It's irrelevent anyway, you're already broadcasting your ip address.

    4. Re:Oh yes! by muftak · · Score: 3, Funny

      makes a change from us lot rooting MIT :)

    5. Re:Oh yes! by Anonymous Coward · · Score: 1, Funny

      You ARE aware that you can post something intended for TWO audiences? One, that gets the joke, and another - you fit in here - that does not. Technical forums are the best - because someone like you, who thinks they know everything, will come along and "set me straight."

      The md5sum of this post is: a1701b65a107c9a92958acdb29e6fdef

    6. Re:Oh yes! by Pollardito · · Score: 2, Funny

      this is the part where we find out the hard way that some hackers have bought mlt.edu isn't it?

      seriously, a month from now we're going to find out that this was really some sort of security study to determine the true power of the herd mentality on Slashdot

    7. Re:Oh yes! by Anpheus · · Score: 2, Funny

      I checked, and that only works if I don't include the md5sum of your post in your post. This is clearly an error on your part. Please run your post through a program until it actually has an md5post within it that represents it.

  2. Yay! by Renraku · · Score: 5, Funny

    Even you can help the next generation of scammers find an ISP to call home!

    --
    Job? I don't have time to get a job! Who will sit around and bitch about being broke and unemployed then?
  3. Yes. Yes, I can by no+reason+to+be+here · · Score: 4, Funny

    Oh wait. This isn't an "Ask Slashdot"?

    Nevermind...

    --
    my pet machine
  4. Packets to my monitor, eh? by ip_freely_2000 · · Score: 4, Funny

    "have users download a client which attempts to spoof packets to the monitor"

    But my monitor does not have an ethernet port! Can I send packets into my DVI port?

  5. Re:Sounds dangerous by Anonymous Coward · · Score: 3, Funny
    Maybe I'm too paranoid. But

    No buts, YES, YOU ARE TOO PARANOID!

    Then again, you probably think I am one of them programmers now typing up this cover-up reply.

  6. Spoofage by iXiXi · · Score: 5, Funny

    My packets have spoof all over them ! Anyone have a tissue?

  7. You'll be spoofed!! by eclectro · · Score: 2, Funny

    It's a collaboration between Slashdot and MIT to finally get adware on Linux machines.

    --
    Take the cheese to sickbay, the doctor should see it as soon as possible - B'Elanna Torres, "Learning Curve"
  8. Great way to destroy the project by isaacklinger · · Score: 3, Funny

    Getting too many connections from slashdotters...?

  9. It's true by rudy_wayne · · Score: 5, Funny

    Nearly 5 years ago, the great and all knowing Steve Gibson predicted that the raw sockets in Windows XP would allow packet spoofing that would bring down the internet with unstoppable DOS attacks.

    So it must be true.

  10. Try tenets, as in a belief by PitaBred · · Score: 2, Funny

    He's talking about the tenants of the Internet architecture in his introduction... should I assume he means the electrons, or the switches?

    --
    My blog. Good stuff (when I remember to update it). Read it.
  11. Have they tried . . . by Orange+Crush · · Score: 2, Funny

    Are the spoofed packets' evil bits set to 1?

  12. I'll download only if: by psbrogna · · Score: 5, Funny

    These additional demands are met:
    1. a free lollipop.
    2. a car ride deep in the forest

  13. In related news.... by Mayhem178 · · Score: 5, Funny

    ...the other 20% of spoofable IP addresses are reported to be in the possession of Weird Al Yankovic, who, according to US Attorney General Alberto R. Gonzales, is capable of spoofing damn near anything.

    A full-blown investigation is under way to put an end to Weird Al's wild spoofing. Rap legend Coolio has pledged his support in these investigations.

    Weird Al was unavailable for comment, but his assistant did pass along his official response, which was, "Mecha lecha hi, Mecha hiny hiny ho."

    More at 11.

    --

    "You will pay for your lack of vision..." - Emperor Palpatine to Ray Charles

  14. Unique? by iminplaya · · Score: 5, Funny

    Apparently, 80% of the IP addresses measured no longer support spoofing!

    Yes, but how many of those are unique IPs?

    --
    What?
  15. Spoofing is still a HUGE problem where I am. by weeboo0104 · · Score: 1, Funny

    I've been checking IP addresses on all the workstations around me and every one of them has 127.0.0.1 entered. I can't believe our internet even works here!

    --
    It is easier to build strong children than to repair broken men. -Frederick Douglass
  16. wow by stinky+wizzleteats · · Score: 3, Funny

    Why don't we do something less invasive, like snmpwalk every address on the Internet?

  17. Re:Have they tried . . . by Architect_sasyr · · Score: 2, Funny

    Not long after Fyodor put out the freebie chapter for how to own a continent, I looked into the process of spoofing a full TCP connection.

    I felt it prudent to follow the RFC's and set said evil bit. So now I have a DoS tool with the evil bit...

    If spoofing is no longer valid, then someone has a hell of a lot of explaining to do as to why this tool works so well...

    --
    Me failed English...
    FreeBSD over Linux. If my comments seem odd, this may explain...
  18. Got Root?! by 955301 · · Score: 4, Funny


    Blockquoth the poster:

    On *nix systems, you must run the spoofer as root (in order to create
    the raw socket) with no arguments, e.g.
          # ./spoofer

    Ahahahahahahah! You're kidding, right?

    --
    You are checking your backups, aren't you?
  19. In other news by Anonymous Coward · · Score: 1, Funny

    A new social engineering experiment has been set up where people are encouraged to download a program which reports back to home with the results to see how many people will idly run any program they are told to. To make it more interesting users are told they must give the program full access to their system (known as "root" in geek terms) for it to work. Results of this experiment will be out tommorow!