Swimming with the Razorfishes

Thursday, August 26, 2004

"Fortunately for Nmap users, Microsoft implemented the new restrictions in their typical half-assed fashion. Instead of sending raw IP packets, we move one layer down and send our raw IP packets in raw ethernet frames. It took Microsoft years to develop SP2, but attackers can completely defeat the raw socket and (with a little more work) connect() restrictions in minutes!"

I'm tickled that nmap developers were able to circumvent these changes so quickly.


Post a Comment

Links to this post:

Create a Link

<< Home