Re: Linux 2.2.x ISN Vulnerability

Andrea Arcangeli (andrea@suse.de)
Mon, 27 Sep 1999 00:35:33 +0200 (CEST)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: wingel@hog.ctrl-c.liu.se: "Re: Preventing a user login"
Previous message: Alan Cox: "Re: PPPoE"
In reply to: Alex Buell: "Re: Turning lucent winmodem into soundcard (RT-Linux -when?)"

On Sun, 26 Sep 1999 kuznet@ms2.inr.ac.ru wrote:

>> So in the bug-free case (aka pre-2.2.13/2.3.18ac8), the attacker can't
>> know the whole secret,
>
>It can. Reread the report.

Or better I read your fix 8). I didn't looked at the caller so I wasn't
aware the tcp was using the source/dest addr of the listening socket
instead of the ones of the syn packet.

Andrea

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

Next message: wingel@hog.ctrl-c.liu.se: "Re: Preventing a user login"
Previous message: Alan Cox: "Re: PPPoE"
In reply to: Alex Buell: "Re: Turning lucent winmodem into soundcard (RT-Linux -when?)"