From owner-freebsd-security Mon Feb 21 5:28:58 2000 Delivered-To: freebsd-security@freebsd.org Received: from hydrant.intranova.net (hydrant.intranova.net [209.201.95.10]) by hub.freebsd.org (Postfix) with SMTP id 45B3637BC1E for ; Mon, 21 Feb 2000 05:28:54 -0800 (PST) (envelope-from oogali@intranova.net) Received: (qmail 2218 invoked from network); 21 Feb 2000 04:28:59 -0000 Received: from localhost (oogali@127.0.0.1) by hydrant.intranova.net with SMTP; 21 Feb 2000 04:28:59 -0000 Date: Sun, 20 Feb 2000 23:28:59 -0500 (EST) From: Omachonu Ogali To: Lowell Gilbert Cc: freebsd-security@freebsd.org Subject: Re: Random Sequence Numbers In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Har, Har, Har. On 20 Feb 2000, Lowell Gilbert wrote: > Omachonu Ogali writes: > > > That was dropped a while ago and I saw that post Steven did, and secondly > > Dan told me he's done it already so there was no need to go on as it was > > only about 4-5 lines of code. > > Actually, what Dan had done was randomizing the *initial* sequence > numbers in a TCP session, as (in fact) Bellovin described in RFC 1948. > What *your* code did was randomize *every* packet's sequence number. > I still insist on believing that you had to be kidding, because the idea > and the execution both qualify among the best spoofs I've seen in weeks. > > - Lowell Gilbert > -- +-------------------------------------------------------------------------+ | Omachonu Ogali oogali@intranova.net | | Intranova Networking Group http://tribune.intranova.net | | PGP Key ID: 0xBFE60839 | | PGP Fingerprint: C8 51 14 FD 2A 87 53 D1 E3 AA 12 12 01 93 BD 34 | +-------------------------------------------------------------------------+ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message