Web Servers General Talk - IP Spoofing. Is it still a threat?

This is Interesting: Free IT Magazines  
Home > Archive > Web Servers General Talk > March 2004 > IP Spoofing. Is it still a threat?





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author IP Spoofing. Is it still a threat?
David Schlecht

2004-03-07, 11:33 am

Hi All,

I have a web server that experiences periodic attack to our web forms.
Well, actually, the attacks use the forms to try to attack
vulnerabilities in CGI processing.

We used to get multiple attacks from the same IP address. Recently,
however, the attacks come from multiple IPs. Now we get 2-3 attacks in
a 10-second window and they all come from different IPs.

My question is:
In these days of better randomization of the TCP/IP sequence variable,
is IP Spoofing still a threat? In other words, can I rely on my web
server logs to accurately determine the sender's IP address or would I
be complaining to the wrong person?

Any thoughts?

-Dave
Sponsored Links






Free braindumps | Software forum | Database administration forum

Copyright 2003 - 2009 webservertalk.com