Re: New tcp stack attack

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

[view in full thread]

From: Claudio Jeker <cjeker@...>

To: misc <misc@...>

Subject: Re: New tcp stack attack

Date: Wednesday, October 1, 2008 - 9:58 am

On Wed, Oct 01, 2008 at 03:31:00PM +0200, Stephan A. Rickauer wrote:

quoted text

> On Wed, 2008-10-01 at 14:52 +0200, Leon Dippenaar wrote:
> > Hi there,
> >
> > is there any weight to this new story on slashdot
> > http://it.slashdot.org/it/08/10/01/0127245.shtml
> >
> > about a new attacker possible to break any tcp stack? Sounds rather
> > shady, so here I am, perhaps you guys have your ears closer to the ground
>
> A little bit less vage info can be found here
>
> http://tinyurl.com/3hv3kf
>

This article is mostly about exploiting SYN cookies to bring servers into
resource starvation. OpenBSD does not implement SYN cookies. We have a SYN
cache with a upper limit of open handshakes. Together with random initial
sequence numbers it is hard to finish the 3-way handshake without getting
the SYN/ACK from the server on OpenBSD systems.

I'm not too concerned about this "fundamental problem with TCP" but as
usual the mentioned article is less informative then the back side of my
breakfast cereals box.
--
:wq Claudio

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

New tcp stack attack, Leon Dippenaar, (Wed Oct 1, 8:52 am)

Re: New tcp stack attack, Jussi Peltola, (Wed Oct 1, 11:56 am)

Re: New tcp stack attack, Duncan Patton a Campbell, (Wed Oct 1, 10:13 am)

Re: New tcp stack attack, Fernando Gont, (Wed Oct 1, 11:24 am)

Re: New tcp stack attack, Duncan Patton a Campbell, (Wed Oct 1, 11:41 am)

Re: New tcp stack attack, Fernando Gont, (Wed Oct 1, 12:26 pm)

Re: New tcp stack attack, Peter J. Philipp, (Wed Oct 1, 12:56 pm)

Re: New tcp stack attack, Sunnz, (Fri Oct 3, 12:18 pm)

Re: New tcp stack attack, Fernando Gont, (Wed Oct 1, 1:31 pm)

Re: New tcp stack attack, Peter J. Philipp, (Wed Oct 1, 2:11 pm)

Re: New tcp stack attack, Brian Keefer, (Wed Oct 1, 10:37 pm)

Re: New tcp stack attack, Stephan A. Rickauer, (Wed Oct 1, 9:31 am)

Re: New tcp stack attack, Claudio Jeker, (Wed Oct 1, 9:58 am)

Re: New tcp stack attack, Paul de Weerd, (Wed Oct 1, 10:46 am)

Re: New tcp stack attack, Duncan Patton a Campbell, (Wed Oct 1, 10:22 am)

Re: New tcp stack attack, Dries Schellekens, (Wed Oct 1, 10:47 am)

Re: New tcp stack attack, Dries Schellekens, (Wed Oct 8, 7:12 am)

Re: New tcp stack attack, Alexander Sabourenkov, (Wed Oct 1, 10:44 am)


linux-kernel:
Vu Pham	Re: [Scst-devel] Integration of SCST in the mainstream Linux kernel
Greg KH	[GIT PATCH] driver core patches against 2.6.24
Tarkan Erimer	Re: Dual-Licensing Linux Kernel with GPL V2 and GPL V3
Andrew Morton	Re: -mm merge plans for 2.6.23 -- sys_fallocate
linux-netdev:
David Miller	[GIT]: Networking
Gerrit Renker	[PATCH 28/37] dccp: Integration of dynamic feature activation - part 3 (client side)
David Miller	Re: htb parallelism on multi-core platforms
Jarek Poplawski	[PATCH] pkt_sched: Destroy gen estimators under rtnl_lock().
git:

openbsd-misc:

Re: New tcp stack attack

Online users