From owner-freebsd-security Tue May 29 18:11:39 2001 Delivered-To: freebsd-security@freebsd.org Received: from mta4.rcsntx.swbell.net (mta4.rcsntx.swbell.net [151.164.30.28]) by hub.freebsd.org (Postfix) with ESMTP id 3905F37B423 for ; Tue, 29 May 2001 18:11:34 -0700 (PDT) (envelope-from ryanpek@swbell.net) Received: from mhx800 ([64.219.216.69]) by mta4.rcsntx.swbell.net (Sun Internet Mail Server sims.3.5.2000.03.23.18.03.p10) with SMTP id <0GE4005MX9A8H4@mta4.rcsntx.swbell.net> for freebsd-security@freebsd.org; Tue, 29 May 2001 16:35:09 -0500 (CDT) Date: Tue, 29 May 2001 16:31:33 -0500 From: Ryan Subject: Re: Syn+Fin (Setup) And TCP RST To: freebsd-security@freebsd.org Message-id: <002001c0e886$c440b2d0$45d8db40@mhx800> MIME-version: 1.0 X-Mailer: Microsoft Outlook Express 5.50.4522.1200 Content-type: multipart/alternative; boundary="----=_NextPart_000_0017_01C0E85C.D27B11D0" X-MSMail-Priority: Normal X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 References: <010f01c0e888$5ab3c120$b88f39d5@a> X-Priority: 3 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_0017_01C0E85C.D27B11D0 Content-Type: text/plain; charset="windows-1255" Content-Transfer-Encoding: quoted-printable once again.. use ssh2 its alot safer! ----- Original Message -----=20 From: Liran Dahan=20 To: freebsd-security@freebsd.org=20 Sent: Tuesday, May 29, 2001 4:43 PM Subject: Syn+Fin (Setup) And TCP RST I've added those 2 options in my kernel long time ago: options TCP_DROP_SYNFIN #drop TCP packets with SYN+FIN options TCP_RESTRICT_RST #restrict emission of TCP RST = =20 Is this could be the reason why even when i add in my firewall to send = RST packets, it takes me 30 seconds till i get timeout of Connection = refused when i telneting my box on randomly closed ports.. ?=20 And about TCP_DROP_SYNFIN .. is this could be one of the reasons = 'setup' command 'aint working on my ipfw? If my speculations are true... Why those kernel options are used for? Thanks, Liran Dahan (lirandb@netvision.net.il) ------=_NextPart_000_0017_01C0E85C.D27B11D0 Content-Type: text/html; charset="windows-1255" Content-Transfer-Encoding: quoted-printable

once again.. use ssh2

its alot safer!

----- Original Message -----
From:=20 Liran=20 Dahan
To: freebsd-security@freebsd.org= =20

Sent: Tuesday, May 29, 2001 = 4:43 PM

Subject: Syn+Fin (Setup) And = TCP=20 RST

I've added those 2 options in my = kernel long time=20 ago:

options        =20 TCP_DROP_SYNFIN         #drop = TCP=20 packets with=20 SYN+FIN
options        =20 TCP_RESTRICT_RST        #restrict = emission=20 of TCP RST          =

Is this could be the reason why even = when i add=20 in my firewall to send RST packets, it takes me 30 seconds till i get = timeout=20 of Connection refused when i telneting my box on randomly closed = ports.. ?=20

And about TCP_DROP_SYNFIN .. is this = could be one=20 of the reasons 'setup' command 'aint working on my ipfw?

If my speculations are true... Why = those kernel=20 options are used for?

Thanks,

          Liran = Dahan (lirandb@netvision.net.il)

------=_NextPart_000_0017_01C0E85C.D27B11D0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message