It is a "one line"-addition to ping.c.
Then you use newly compiled ping like this: ping -D <public IP>
This scenario works for NAT and attacker sitting on the local network.
Tested on OpenBSD 4.3 acting as a NAT-box.
//maxim
On 12 apr 2009, at 22.05, Fernando Quintero wrote:
Hi list,
it's about: http://www.openbsd.org/errata45.html#002_pf
I'm trying to reproduce this bug, but i would like to get more
information
about how the "kernel panic" is produced.
so, anyone has more information?
http://www.securitytracker.com/alerts/2009/Apr/1022032.html
I review the patchs, and I configurate some rules to test the bug,
create
the icmp packets, but it does not work.
--
--------------
Fernando Quintero
http://nonroot.blogspot.com/
*Just a nonroot User*
