undefined | Better HN

0 pointsexikyut3y ago0 comments

How would you spoof arbitrary IPs? IIUC it's poked at as the next hop...?

(Mhm, embarrassingly out of the loop)

0 comments

I _think_ that if you know the real source and real destination of an ICMP message, you can just forge back a message with an arbitrary TTL exceeded message, from any "I'm IP address xxx" address. Those can come from a lot of rando IPs because the intent of them is just "at this hop, the TTL ran out", and the hops the original sender wouldn't know anyway. A lot of fake hops would be essentially impossible if you examined the real BGP routes and stuff, but verifying that in real time sounds hard enough that I bet nobody bothers.

I'd have to do a lot more research and testing to verify though, not something I've played with in practice, and obviously my terminology isn't even right above, so take it for what it's worth.

wmf3y ago

If you return fake IPs in a traceroute you won't be able to control the reverse DNS which is the point of this exercise.

2 more replies

j / k navigate · click thread line to collapse

0 comments

kadoban3y ago

I'd have to do a lot more research and testing to verify though, not something I've played with in practice, and obviously my terminology isn't even right above, so take it for what it's worth.

wmf3y ago

If you return fake IPs in a traceroute you won't be able to control the reverse DNS which is the point of this exercise.

2 more replies

j / k navigate · click thread line to collapse