Bugtraq mailing list archives

Re: Excellent host SYN-attack fix for BSD hosts

From: ollivier.robert () eurocontrol fr (Ollivier Robert)
Date: Tue, 15 Oct 1996 08:35:40 +0100


According to Avi Freedman:

contains a few bits for reference into a table of MSS values; window size
and any initial data is discarded; and the rest of the ISS is the MD5 output


It will also break T/TCP I think. While it is not a big issue at the moment
it may become a real one later. Stevens in his thirs volume describe why
T/TCP is a good thing and it will be seen more and more in the future.

In FreeBSD-current, there is a fix too for the SYN attack. I don't remember
the details of what has been done but the source code is of course
available.

--
Ollivier ROBERT -=- Eurocontrol EEC/TS -=- Ollivier.Robert () eurocontrol fr

Current thread:

Re: novell utility, (continued)
- - Re: novell utility Doctor Who (Oct 10)
  - Sun Security Bulletin #136 Mark Graff (Oct 10)
  - SECURITY HOLE IN AUTHENTICATION FORWARDING Charles M. Hannum (Oct 10)
    - Re: SECURITY HOLE IN AUTHENTICATION FORWARDING Tatu Ylonen (Oct 13)
  - InterNIC Shenanigans (crypt-pw) Sean B. Hamor (Oct 11)
    - Re: InterNIC Shenanigans (crypt-pw) Yiorgos Adamopoulos (Oct 11)
    - Re: InterNIC Shenanigans (crypt-pw) Igor Chudov @ home (Oct 11)
    - Re: InterNIC Shenanigans (crypt-pw) Steve Reid (Oct 12)
    - Re: InterNIC Shenanigans (crypt-pw) Rogue Agent (Oct 12)
  - Excellent host SYN-attack fix for BSD hosts Avi Freedman (Oct 11)
    - Re: Excellent host SYN-attack fix for BSD hosts Ollivier Robert (Oct 15)
    - Re: Excellent host SYN-attack fix for BSD hosts Casper Dik (Oct 16)
    - Re: Excellent host SYN-attack fix for BSD hosts David Schwartz (Oct 16)
  - Exploit for 1.2.X (maybe some 1.3.X) kernels Marin Purgar - PMC (Oct 11)