Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1995_1

Bugtraq archives for 1st quarter (Jan-Mar) 1995: Re: NYT Article this morning

Re: NYT Article this morning

Perry E. Metzger (perryimsi.com)
Mon, 23 Jan 1995 15:37:36 -0500

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Christopher Klaus: "Hijacking tool"
Previous message: Darren Reed: "A quick patch to help against TCP ISN guessing."
Next in thread: Rick Busdiecker: "Re: NYT Article this morning"

Christopher Klaus says:
> To fully fix the problem will require all the vendors to come out with
> kernel patches to make the TCP sequence numbering difficult to
> guess,

Even that is insufficient, actually. If you see a packet going by, you
can still try to jam the works up and steal the connection anyway. The
only permanent solution is a cryptographic security protocol for the
net -- one is actually in the works now in the IETF.

Perry

Next message: Christopher Klaus: "Hijacking tool"
Previous message: Darren Reed: "A quick patch to help against TCP ISN guessing."
Next in thread: Rick Busdiecker: "Re: NYT Article this morning"