RE: AuthHosts and domain name

Fri, 25 May 2001 07:58:00 -0700 

Here's my situation - I've thought of using TZO on the client side to use
with the AuthHosts setting on the server (which doesn't look like it can be
done after further research - and with the addition of the possibility of
spoofing, as you mentioned, it isn't looking too attractive even if it did).
Does anyone know of a service, like TZO except for ip addresses instead of
domain names, that allows you to have a "travelling" IP address (i.e., your
run their software and they redirect your ip address to the machine you're
currently on)? Thanks.

-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Mac Reiter
Sent: Friday, May 25, 2001 9:45 AM
To: [EMAIL PROTECTED]
Subject: Re: AuthHosts and domain name


At 09:18 AM 5/25/01 -0500, you wrote:
>Is it possible to successfully use a domain name (my.domain.com) _instead
>of_ ip addresses in the AuthHosts registry entry? TIA

Probably not.  AuthHosts is a security measure, and DNS lookups are easily
spoofed.  IP addresses are harder to fake and still successfully continue
the attack (if the connection claims to come from a fake address, the
server packets won't go to the spoofer's machine).

As always, if I've misrepresented something, security or network
specialists are welcome to correct me.

Mac
 _____________________________     /"\
 Mac Reiter                        \ /    ASCII Ribbon Campaign
 Nomadics, Inc.                     X     Against HTML Mail
 [EMAIL PROTECTED]               / \   (To join the campaign, simply use
                                          this in your signature.)
---------------------------------------------------------------------
To unsubscribe, send a message with the line: unsubscribe vnc-list
to [EMAIL PROTECTED]
See also: http://www.uk.research.att.com/vnc/intouch.html
---------------------------------------------------------------------

---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.255 / Virus Database: 128 - Release Date: 5/17/2001
---------------------------------------------------------------------
To unsubscribe, send a message with the line: unsubscribe vnc-list
to [EMAIL PROTECTED]
See also: http://www.uk.research.att.com/vnc/intouch.html
---------------------------------------------------------------------

Reply via email to