Re: tcp vulnerability? haven't seen anything on it here...

From: Florian Weimer
Date: Fri Apr 23 2004 - 05:32:06 EST

Next message: Andrew Morton: "Re: put_page() tries to handle hugepages but fails"
Previous message: William Lee Irwin III: "Re: put_page() tries to handle hugepages but fails"
In reply to: alex: "Re: tcp vulnerability? haven't seen anything on it here..."
Next in thread: Florian Weimer: "Re: tcp vulnerability? haven't seen anything on it here..."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

alex@xxxxxxxxxxxx writes:

> Not quite. With a SYN you have to respond with exactly the same sequence
> number as attacking host in order to establish connection. With RST, your
> sequence number needs to be +- rwin in order to kill the connection. That
> significantly reduces search space.

Don't forget that you can tear down a connection by sending a SYN in
the correct window as well.

--
Current mail filters: many dial-up/DSL/cable modem hosts, and the
following domains: atlas.cz, bigpond.com, postino.it, tiscali.co.uk,
tiscali.cz, tiscali.it, voila.fr.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Andrew Morton: "Re: put_page() tries to handle hugepages but fails"
Previous message: William Lee Irwin III: "Re: put_page() tries to handle hugepages but fails"
In reply to: alex: "Re: tcp vulnerability? haven't seen anything on it here..."
Next in thread: Florian Weimer: "Re: tcp vulnerability? haven't seen anything on it here..."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]