5
1
With IP options we can specify the route we want an IP packet to take while connecting to a server. If we know that a particular server provides some extra functionality based on the IP address can we not utilize this by spoofing an IP packet so that the source IP address is the privileged IP address and one of the hosts on the Source Routing is our own.
So if the privileged IP address is x1 and server IP address is x2 and my own IP address is x3. I send a packet from x1 to x2 which is supposed to pass through x3. x1 does not actually send the packet. It is just that x2 thinks the packet came from x1 via x3. Now in response if x2 uses the same routing policy (as a matter of courtesy to x1) then all packets would be received by x3.
Will the destination typically use the same IP address sequences as specified in the routing header so that packets coming from the server pass through my IP where I can get the required information?
Can we not spoof a TCP connection in the above case?
Is this attack used in practice? Has it been used by anyone?
Rohit Banga
Posted 2010-04-13T05:26:19.920
Reputation: 1 814
then what is the use of source routing? – Rohit Banga – 2010-04-13T06:51:11.260
The use of source routing should be obvious. Unfortunately at the time of its inception the malice which would haunt the internet wasn't quite so obvious yet. tl;dr: Abuse killed the cat. – Someone – 2014-05-16T02:27:55.837