[Full-disclosure] The best hacker ever !
Gregory Boyce
gboyce at badbelly.com
Mon May 2 17:06:39 BST 2005
On Mon, 2 May 2005, Zuxy Haiduc wrote:
> While most people know better than attacking 127.0.0.1, it's important
> to note that in some operating systems (Windows, and a few others, but
> normally not *nix), anything in 127.* is loopback.
>
> Its a lot easier to trick someone into attacking, say, 127.36.120.67,
> than 127.0.0.1.
>
> Just a thought.
127.36.120.67 works under Linux as well (tested on Ubuntu, Debian, Redhat
and Gentoo with 2.2-2.6 kernels).
Full-Disclosure is hosted and sponsored by Secunia.