Hosting Provided By

Re: Ip spoof from 0.0.0.0

From: Paul Gillingwater <paul(at)lanifex.com>
Date: Wed Nov 06 2002 - 14:08:45 EST

Quoting Frank Cheong <chocobofrank@hotmail.com>:
> o yes, I also get these kind of attack these few days while some of them
> leaving a MAC Address 00.30.B6.D0.3C.EC so what can I do to stop these
> attack now ? As all I got is only a MAC address.

There\'s not much you can do. The MAC address is most likely coming from your router, not the remote attacker. The best you could do is ask your upstream ISP to filter outgoing traffic to drop IP packets with invalid source addresses like 0.0.0.0.

Paul Gillingwater, BA, BSc, MBA

Managing Director
CSO Lanifex Unternehmensberatung
& Softwareentwicklung G.m.b.H.

NEW BUSINESS CONCEPTS E-mail: paul@lanifex.com

Tel:     +43(1)2198222-20
Fax:     +43(1)2198222-11
Mobile:  +43(699)1922 3085

Webhome: http://www.lanifex.com/
Address: Praterstrasse 60/1/2

A-1020 Vienna, Austria

This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com Received on Wed Nov 6 18:16:16 2002

This message: [ Message body ]
Next message: Owen McCusker: "ano@ano.com ftpd dip.t-dialin.net"
Previous message: Mike Lewinski: "Re: Ip spoof from 0.0.0.0"
In reply to: Frank Cheong: "Re: Ip spoof from 0.0.0.0"
Next in thread: Nexus: "Re: Ip spoof from 0.0.0.0"
Reply: Nexus: "Re: Ip spoof from 0.0.0.0"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:01:50 EDT