Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1996_4

Bugtraq archives for 4th quarter (Oct-Dec) 1996: Re: Excellent host SYN-attack fix for BSD hosts

Re: Excellent host SYN-attack fix for BSD hosts

Ollivier Robert (ollivier.roberteurocontrol.fr)
Tue, 15 Oct 1996 08:35:40 +0100

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Darren Reed: "Re: Excellent host SYN-attack fix for BSD hosts"
Previous message: James Poland 6-5251: "ftpd bug? Was: bin/1805: Bug in ftpd"
In reply to: Avi Freedman: "Excellent host SYN-attack fix for BSD hosts"
Next in thread: Casper Dik: "Re: Excellent host SYN-attack fix for BSD hosts"

According to Avi Freedman:
> contains a few bits for reference into a table of MSS values; window size
> and any initial data is discarded; and the rest of the ISS is the MD5 output

It will also break T/TCP I think. While it is not a big issue at the moment
it may become a real one later. Stevens in his thirs volume describe why
T/TCP is a good thing and it will be seen more and more in the future.

In FreeBSD-current, there is a fix too for the SYN attack. I don't remember
the details of what has been done but the source code is of course
available.

--
Ollivier ROBERT -=- Eurocontrol EEC/TS -=- Ollivier.Roberteurocontrol.fr

Next message: Darren Reed: "Re: Excellent host SYN-attack fix for BSD hosts"
Previous message: James Poland 6-5251: "ftpd bug? Was: bin/1805: Bug in ftpd"
In reply to: Avi Freedman: "Excellent host SYN-attack fix for BSD hosts"
Next in thread: Casper Dik: "Re: Excellent host SYN-attack fix for BSD hosts"