[NTLUG:Discuss] Brain puzzler
Brian
brian-sender-67b5e0 at pongonova.net
Thu Aug 8 23:02:08 CDT 2002
OK, here's a puzzler for you all:
I have three machines: C, M, and Z.
I desire a TCP connection between C and Z.
However, to establish the connection with Z, an authentication token known only to
M and Z is necessary. C has access to this token only in encrypted form (and can be
decrypted by M, but not by Z). C can never have access to the unencrypted token.
Any ideas?
My solution would be to somehow initiate a connection between M and Z and spoof Z
into thinking that C initiated the connection, maybe by altering the source IP on
the SYN packet. I don't know, however, how C would be made to respond to an ACK for
a SYN it didn't initiate.
--Brian
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 232 bytes
Desc: not available
Url : http://ntlug.org/pipermail/discuss/attachments/20020808/a04fd04a/attachment.bin
More information about the Discuss
mailing list