Routed contents.gifindex.gif

Routed

This vulnerability gives an intruder your routing information. Routed accepts routing information from anyone, so it increases the possibility that an intruder can send false RIP packets, causing your data to be routed to the intruder's machine.

Risk: Medium

Fix: If you are using a simple gateway, use only a default route. Most sites with a simple infrastructure are connected through a single point of entry to the Internet. These sites do not need to run routed. Disable routed from running on the machine. If your host must be able to use dynamic routing, another solution is to obtain and use gated, which can be configured for who to accept routing information from.