Date: Mon, 20 Oct 2014 10:23:45 +0200 From: Matthias Apitz <guru@unixarea.de> To: freebsd-current@freebsd.org Subject: Re: FreeBSD && TCP stealth Message-ID: <20141020082345.GA2040@unixarea.DDR.dd> In-Reply-To: <20141020072528.GA1748@unixarea.DDR.dd> References: <20141020072528.GA1748@unixarea.DDR.dd>
next in thread | previous in thread | raw e-mail | index | archive | help
El día Monday, October 20, 2014 a las 09:25:28AM +0200, Matthias Apitz escribió: > > Hello, > > Is there any work started or in progress to implement TCP stealth in our > kernel as proposed to IETF in > > https://datatracker.ietf.org/doc/draft-kirsch-ietf-tcp-stealth/ > > The idea is that the client put some magic value in the ISN of the first > SYN pkg which is derived from a secret the client and the server share. > The server can check the ISN and decide if it will answer the SYN pkg or > do a RST, for example. For Linux wip see also: https://gnunet.org/knock matthias -- Matthias Apitz | /"\ ASCII Ribbon Campaign: E-mail: guru@unixarea.de | \ / - No HTML/RTF in E-mail WWW: http://www.unixarea.de/ | X - No proprietary attachments phone: +49-170-4527211 | / \ - Respect for open standards | en.wikipedia.org/wiki/ASCII_Ribbon_Campaign
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20141020082345.GA2040>