Re: New tcp stack attack

view
thread

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

[view in full thread]

From: Claudio Jeker <cjeker@...>

To: misc <misc@...>

Subject: Re: New tcp stack attack

Date: Wednesday, October 1, 2008 - 9:58 am

On Wed, Oct 01, 2008 at 03:31:00PM +0200, Stephan A. Rickauer wrote:

quoted text

> On Wed, 2008-10-01 at 14:52 +0200, Leon Dippenaar wrote:
> > Hi there,
> >
> > is there any weight to this new story on slashdot
> > http://it.slashdot.org/it/08/10/01/0127245.shtml
> >
> > about a new attacker possible to break any tcp stack? Sounds rather
> > shady, so here I am, perhaps you guys have your ears closer to the ground
>
> A little bit less vage info can be found here
>
> http://tinyurl.com/3hv3kf
>

This article is mostly about exploiting SYN cookies to bring servers into
resource starvation. OpenBSD does not implement SYN cookies. We have a SYN
cache with a upper limit of open handshakes. Together with random initial
sequence numbers it is hard to finish the 3-way handshake without getting
the SYN/ACK from the server on OpenBSD systems.

I'm not too concerned about this "fundamental problem with TCP" but as
usual the mentioned article is less informative then the back side of my
breakfast cereals box.
--
:wq Claudio

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

New tcp stack attack, Leon Dippenaar, (Wed Oct 1, 8:52 am)

Re: New tcp stack attack, Jussi Peltola, (Wed Oct 1, 11:56 am)

Re: New tcp stack attack, Duncan Patton a Campbell, (Wed Oct 1, 10:13 am)

Re: New tcp stack attack, Fernando Gont, (Wed Oct 1, 11:24 am)

Re: New tcp stack attack, Duncan Patton a Campbell, (Wed Oct 1, 11:41 am)

Re: New tcp stack attack, Fernando Gont, (Wed Oct 1, 12:26 pm)

Re: New tcp stack attack, Peter J. Philipp, (Wed Oct 1, 12:56 pm)

Re: New tcp stack attack, Sunnz, (Fri Oct 3, 12:18 pm)

Re: New tcp stack attack, Fernando Gont, (Wed Oct 1, 1:31 pm)

Re: New tcp stack attack, Peter J. Philipp, (Wed Oct 1, 2:11 pm)

Re: New tcp stack attack, Brian Keefer, (Wed Oct 1, 10:37 pm)

Re: New tcp stack attack, Stephan A. Rickauer, (Wed Oct 1, 9:31 am)

Re: New tcp stack attack, Claudio Jeker, (Wed Oct 1, 9:58 am)

Re: New tcp stack attack, Paul de Weerd, (Wed Oct 1, 10:46 am)

Re: New tcp stack attack, Duncan Patton a Campbell, (Wed Oct 1, 10:22 am)

Re: New tcp stack attack, Dries Schellekens, (Wed Oct 1, 10:47 am)

Re: New tcp stack attack, Dries Schellekens, (Wed Oct 8, 7:12 am)

Re: New tcp stack attack, Alexander Sabourenkov, (Wed Oct 1, 10:44 am)

Navigation

Popular discussions


linux-kernel:
Greg Kroah-Hartman	[PATCH 005/196] Chinese: add translation of SubmittingDrivers
Christian Kujau	2.6.20.4: NETDEV WATCHDOG and lockups
Tarkan Erimer	Re: Dual-Licensing Linux Kernel with GPL V2 and GPL V3
Jack Steiner	Re: [patch] my mmu notifiers
git:

linux-netdev:
Gerrit Renker	[PATCH 27/37] dccp: Integration of dynamic feature activation - part 2 (server side)
Arjan van de Ven	Re: [GIT]: Networking
Jarek Poplawski	[PATCH] pkt_sched: Destroy gen estimators under rtnl_lock().
Jens Axboe	Re: [BUG] New Kernel Bugs
netbsd-tech-kern:
YAMAMOTO Takashi	removing VOPs
Lennart Augustsson	Re: FreeBSD 5/6/7 kernel emulator for NetBSD 2.x
Daniel Carosone	Re: direct I/O
Brian Buhrow	Re: /sbin/reboot and secmodel

Colocation donated by:

Online users

Syndicate