• Subject: Re: MIDRANGE-L Digest V4 #43
  • From: Scott Klement <klemscot@xxxxxxxxxxxx>
  • Date: Fri, 12 Jan 2001 16:06:26 -0600 (CST)


This wouldn't prevent someone from doing a DOS attack, or a buffer
overflow exploit on a UDP service...Heck, you could probably even use a
buffer overflow exploit to turn your outgoing routing back on so that you
could do some more useful hacking.

And it doesnt help at ALL during the time that you ARE connected to the
internet.

The best solution will always be a firewall running on a router/gateway
thats external from the machine that you're trying to protect.


On Fri, 12 Jan 2001, Jim Langston wrote:

> Here's a little trick you can do to effectively disable your
> TCP/IP connection to the internet that I find works.
> 
> If you go to DOS (Run Command.com) you can type a command called
> ROUTE.  One of the parameters is PRINT. So do a ROUTE PRINT and
> look for an entry that has the Network Destination of 0.0.0.0.
> That will point to your default gateway (your router).  Okay, write
> down the ip address at the end of that line under Gateway.
> 
> To disable TCP/IP to the internet:
> ROUTE DELETE 0.0.0.0
> 
> To reenable TCP/IP to the internet:
> ROUTE ADD 0.0.0.0 MASK 0.0.0.0 <Gateway IP>
> 
> You can even create a batch program with those commands and call them
> Disable TCP.BAT
> and
> Enable TCP.BAT
> if you want, stick them on your desktop and run them when appropriate.
> 
> If you totally screw up your routing table (that is what you are modifying)
> don't worry about it, just reboot your computer and all will be back to
> normal.
> 
> This will work under Win9x and WinNT and probably under Win2K (not tested
> there).
> 
> Basically, what is happening here, is outside machines can STILL get to your
> computer, your computer just won't respond.  It doesn't know how to talk to
> them back.  No route.  Any way they try to connect to your machine they'll
> get no response, your machine is not visible to/from the internet without
> a gateway.
> 
> Regards,
> 
> Jim Langston
> 

+---
| This is the Midrange System Mailing List!
| To submit a new message, send your mail to MIDRANGE-L@midrange.com.
| To subscribe to this list send email to MIDRANGE-L-SUB@midrange.com.
| To unsubscribe from this list send email to MIDRANGE-L-UNSUB@midrange.com.
| Questions should be directed to the list owner/operator: david@midrange.com
+---

This thread ...

Replies:

Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2019 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].