Re: tcp timestamp vulnerability?
From: Andre Oppermann (andre_at_freebsd.org)
Date: 05/19/05
- Previous message: Christian Brueffer: "tcp timestamp vulnerability?"
- In reply to: Christian Brueffer: "tcp timestamp vulnerability?"
- Next in thread: Christian Brueffer: "Re: tcp timestamp vulnerability?"
- Reply: Christian Brueffer: "Re: tcp timestamp vulnerability?"
- Reply: John-Mark Gurney: "Re: tcp timestamp vulnerability?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Thu, 19 May 2005 11:42:33 +0200 To: Christian Brueffer <chris@unixpages.org>
Christian Brueffer wrote:
>
> Hi,
>
> has anyone taken a look at http://www.kb.cert.org/vuls/id/637934?
sys/netinet/tcp_input.c Revision 1.270, Sun Apr 10 05:24:59 2005 UTC
(5 weeks, 4 days ago) by ps
Branch: MAIN
Changes since 1.269: +23 -3 lines
- Tighten up the Timestamp checks to prevent a spoofed segment from
setting ts_recent to an arbitrary value, stopping further
communication between the two hosts.
- If the Echoed Timestamp is greater than the current time,
fall back to the non RFC 1323 RTT calculation.
Submitted by: Raja Mukerji (raja at moselle dot com)
Reviewed by: Noritoshi Demizu, Mohan Srinivasan
-- Andre _______________________________________________ freebsd-net@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-net To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org"
- Previous message: Christian Brueffer: "tcp timestamp vulnerability?"
- In reply to: Christian Brueffer: "tcp timestamp vulnerability?"
- Next in thread: Christian Brueffer: "Re: tcp timestamp vulnerability?"
- Reply: Christian Brueffer: "Re: tcp timestamp vulnerability?"
- Reply: John-Mark Gurney: "Re: tcp timestamp vulnerability?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
|
