Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1995_1

Bugtraq archives for 1st quarter (Jan-Mar) 1995: Re: Hijacking tool

Re: Hijacking tool

Alec Muffett (Alec.MuffettUK.Sun.COM)
Tue, 24 Jan 1995 14:27:29 +0000 (GMT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Alan Hannan: "Re: Hijacking tool"
Previous message: Casper Dik: "Re: Hijacking tool"
In reply to: Casper Dik: "Re: Hijacking tool"
Next in thread: Alan Hannan: "Re: Hijacking tool"

 >
 >If you're hijacking *connections* isn't it much easier to just steal
 >the filehandles in the kernel?

Not if you're on entirely another host.

That's the point of RTM-Snr's attack, as expanded upon by
Bellovin. Guessing sequence numbers and flooding the remote machine
gives you a window of opportunity to slip in a forged packet with the
right sequence number, and usurp the connection entirely from that
point onwards.

- but you know this, of course. 8-)

	- alec

Next message: Alan Hannan: "Re: Hijacking tool"
Previous message: Casper Dik: "Re: Hijacking tool"
In reply to: Casper Dik: "Re: Hijacking tool"
Next in thread: Alan Hannan: "Re: Hijacking tool"