
Routed
This vulnerability gives an intruder your routing information. Routed accepts
routing information from anyone, so it increases the possibility that an
intruder can send false RIP packets, causing your data to be routed to the intruder's
machine.
Risk: Medium
Fix: If you are using a simple gateway, use only a default route. Most sites with
a simple infrastructure are connected through a single point of entry to the
Internet. These sites do not need to run routed. Disable routed from running on
the machine. If your host must be able to use dynamic routing, another solution
is to obtain and use gated, which can be configured for who to accept routing
information from.