Date: Fri, 11 Mar 2005 00:00:36 -0600 (CST) From: Mike Silbersack <silby@silby.com> To: gnn@freebsd.org Cc: Anthony Atkielski <atkielski.anthony@wanadoo.fr> Subject: Re: Clock slew vulnerability in FreeBSD? Message-ID: <20050310235904.N15599@odysseus.silby.com> In-Reply-To: <m2oedqltcv.wl%gnn@neville-neil.com> References: <771770969.20050311034646@wanadoo.fr> <m2oedqltcv.wl%gnn@neville-neil.com>
index | next in thread | previous in thread | raw e-mail
On Fri, 11 Mar 2005 gnn@freebsd.org wrote: > As to how vulnerable FreeBSD is to this I do not know nor do I know if > we should bother to do anything about it. What, in particular are you > worried about here? Also, if you consider this a security issue you > should probably also include the security team in this discussion. > > Later, > George I'd guess that we're fully "vulnerable" to this, but I don't see it really as an issue, unless someone is trying to hide a whole bunch of FreeBSD boxes behind that. And if that's what you're doing, run PF on the NAT machine, I think it has options to scramble such things, no matter what OS the clients behind it are running. Mike "Silby" Silbersackhelp
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050310235904.N15599>