From owner-freebsd-stable@FreeBSD.ORG  Fri Sep 24 15:50:30 2004
Return-Path: <owner-freebsd-stable@FreeBSD.ORG>
Delivered-To: freebsd-stable@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id D116716A56E
	for <freebsd-stable@FreeBSD.ORG>;
	Fri, 24 Sep 2004 15:50:30 +0000 (GMT)
Received: from post5.inre.asu.edu (post5.inre.asu.edu [129.219.110.120])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 59B8143D2F
	for <freebsd-stable@FreeBSD.ORG>;
	Fri, 24 Sep 2004 15:50:14 +0000 (GMT)
	(envelope-from David.Bear@asu.edu)
Received: from conversion.post5.inre.asu.edu by asu.edu (PMDF V6.1-1X6 #30769)
 id <0I4J00A01YH07R@asu.edu> for freebsd-stable@FreeBSD.ORG; Fri,
 24 Sep 2004 08:46:13 -0700 (MST)
Received: from smtp.asu.edu (smtp.asu.edu [129.219.110.107])
	<0I4J00A1MYH05Y@asu.edu>; Fri, 24 Sep 2004 08:46:12 -0700 (MST)
Received: from moroni.pp.asu.edu (moroni.pp.asu.edu [129.219.69.200])
	(8.12.10/8.12.10/asu_smtp_relay,nullclient,tcp_wrapped)
	with ESMTP id i8OFkA71011548; Fri, 24 Sep 2004 08:46:10 -0700 (MST)
Received: by moroni.pp.asu.edu (Postfix, from userid 500)	id B5ABCE21; Fri,
	24 Sep 2004 08:46:01 -0700 (MST)
Received: from post1.inre.asu.edu (post1.inre.asu.edu [129.219.110.72])
	by imap1.asu.edu (8.11.0/8.11.0/asu_cyrus,tcp_wrapped)
 with ESMTP id g03L0SN20229	for <iddwb@IMAP1.ASU.EDU>; Thu,
 03 Jan 2002 14:00:29 -0700 (MST)
Received: from conversion.post1.inre.asu.edu by asu.edu (PMDF V6.1 #40110)
	david.bear@asu.edu) ; Thu, 03 Jan 2002 14:00:28 -0700 (MST)
Received: from mx2.freebsd.org (mx2.FreeBSD.org [216.136.204.119])
 by asu.edu (PMDF V6.1 #40110) with ESMTP id <0GPD00JWKROSP9@asu.edu> for
 iddwb@IMAP1.ASU.EDU (ORCPT david.bear@asu.edu); Thu,
 03 Jan 2002 14:00:28 -0700 (MST)
Received: from hub.freebsd.org (hub.FreeBSD.org [216.136.204.18])
	by mx2.freebsd.org (Postfix) with ESMTP	id 3397155AC5; Thu,
 03 Jan 2002 13:00:04 -0800
Received: by hub.freebsd.org (Postfix, from userid 538)	id DF48537B41C; Thu,
	03 Jan 2002 12:59:48 -0800 (PST)
Received: from localhost (localhost [127.0.0.1])	by hub.freebsd.org (Postfix)
	with SMTP	id 09DB12E820B; Thu, 03 Jan 2002 12:59:47 -0800 (PST)
Received: by hub.freebsd.org (bulk_mailer v1.12); Thu,
 03 Jan 2002 12:59:46 -0800
Received: from clever.eusc.inter.net (clever.eusc.inter.net [213.73.101.4])
	by hub.freebsd.org (Postfix) with ESMTP	id B4BE037B417; Thu,
 03 Jan 2002 12:59:42 -0800 (PST)
Received: from tc11-n67-101.de.inter.net ([213.73.67.101] helo=there)
	16MExc-0003MK-00; Thu, 03 Jan 2002 21:59:36 +0100
From: Matthias Schuendehuette <msch@snafu.de>
Sender: owner-freebsd-security@FreeBSD.ORG
To: dwbear75@gmail.com
Message-id: <E16MExc-0003MK-00@clever.eusc.inter.net>
Organization: Micro$oft-free Zone
MIME-version: 1.0
X-Mailer: KMail [version 1.3.1]
Content-type: text/plain; charset=iso-8859-1
Content-transfer-encoding: 8bit
Precedence: bulk
X-Loop: FreeBSD.org
Delivered-to: freebsd-security@freebsd.org
Old-To: freebsd-security@FreeBSD.ORG
Lines: 29
X-Keywords: 
cc: iss@cert.siemens.de
cc: Peter.Sauerland@siemens.com
cc: freebsd-stable@FreeBSD.ORG
Subject: TCP Sequence-Prediction (4.5-PRE)
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.1
Reply-To: msch@snafu.de
List-Id: Production branch of FreeBSD source code
	<freebsd-stable.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
Date: Fri, 24 Sep 2004 15:50:31 -0000
X-Original-Date: Thu, 03 Jan 2002 21:59:35 +0100
X-List-Received-Date: Fri, 24 Sep 2004 15:50:31 -0000

Hello,

my machine at work was scanned with the ISS Scanner, Vers. 6.2.1 and it 
complained about TCP Sequence Prediction:

'The TCP sequence was found to be predictable.'

I was advised to install FreeBSD 4.1.1-STABLE after 2000-09-28 or later 
:-) as listed in FreBSD-SA-00:52.

I looked at the published Patch in FreBSD-SA-00:52 but couldn't find 
the Sourcecode Sequence to be patched any more (I wasn't wondering).

But so, what shall I do, who's to blame? Is the ISS lying? Is there any 
advice from the FreeBSD Security Officer or the developers how to 
proceed further?

TIA - Matthias

-- 
***************************************************************************
* Matthias Schuendehuette	msch@snafu.de	      	 		  *
* Solmsstrasse 44							  *
* D-10961 Berlin		Engineering Systems Support and Operation *
* Germany		      	(Powered by FreeBSD 4.5-PRERELEASE)   	  *
***************************************************************************

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message