Re: Linux 2.4.27 SECURITY BUG - TCP Local and REMOTE(verified)Denial of Service Attack

From: Alan Cox
Date: Tue Sep 14 2004 - 11:34:04 EST

Next message: Alan Cox: "Re: Changes to ide-probe.c in 2.6.9-rc2 causing improper detection"
Previous message: Pete Zaitcev: "Re: Kernel semaphores"
In reply to: Paul Jakma: "Re: Linux 2.4.27 SECURITY BUG - TCP Local and REMOTE(verified) Denialof Service Attack"
Next in thread: Paul Jakma: "Re: Linux 2.4.27 SECURITY BUG - TCP Local and REMOTE(verified) Denialof Service Attack"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Maw, 2004-09-14 at 15:55, Paul Jakma wrote:
> Hmm, yes, I hadnt thought of the attack-mitigating aspects of
> graceful restart. Though, without other measures, the session is
> still is open to abuse (send RST every second).

Its more than that given port randomization, quite a lot more. Of course
its much easier to just send "must fragment, size 68" icmp replies and
guess them that way. This is spectacularly more effective and various
vendors highly invalid rst acking crap won't save you.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Alan Cox: "Re: Changes to ide-probe.c in 2.6.9-rc2 causing improper detection"
Previous message: Pete Zaitcev: "Re: Kernel semaphores"
In reply to: Paul Jakma: "Re: Linux 2.4.27 SECURITY BUG - TCP Local and REMOTE(verified) Denialof Service Attack"
Next in thread: Paul Jakma: "Re: Linux 2.4.27 SECURITY BUG - TCP Local and REMOTE(verified) Denialof Service Attack"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]