Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1998_4

Bugtraq archives for 4th quarter (Oct-Dec) 1998: Re: about the ip header id

Re: about the ip header id

Vern Paxson (vernEE.LBL.GOV)
Mon, 14 Dec 1998 21:39:30 PST

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Fyodor: "Nmap network auditing/exploring tool V. 2.00 released"
Previous message: Kevin M. Myer: "Learning security"
Maybe in reply to: Salvatore Sanfilippo: "about the ip header id"

>  - randomize the id in the same way of tcp seq number
>    (but without repetitions, I have an idea for a fast
>    algorithm that may perform this work)

A shuffling algorithm can do this using a single pass through an array.

>  - use distinct counters for each dest ip.
>    (I don't think it's such so good idea)

Yep, Solaris does that, maybe some others too.

>  p.s. does somebody know why win* ip stack increase its id by 256?
>       this solution can prevent the problem but may create others.

It's doing the increment little-endian instead of big-endian.

                Vern

Next message: Fyodor: "Nmap network auditing/exploring tool V. 2.00 released"
Previous message: Kevin M. Myer: "Learning security"
Maybe in reply to: Salvatore Sanfilippo: "about the ip header id"