Date: Thu, 08 Aug 2019 19:13:30 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 239724] The ping command doesn't randomize ICMP timestamps and allows system time detection Message-ID: <bug-239724-227@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=239724 Bug ID: 239724 Summary: The ping command doesn't randomize ICMP timestamps and allows system time detection Product: Base System Version: CURRENT Hardware: Any OS: Any Status: New Keywords: patch Severity: Affects Many People Priority: --- Component: bin Assignee: bugs@FreeBSD.org Reporter: gbergling@gmail.com Created attachment 206377 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=206377&action=edit ping(8) patch The current implementation of ping(8) doesn't randomized ICMP timestamps. The attached patch addresses this. Due to the applied randomized offset the system time isn't guessable for an attacker and OS detection is nearly impossible. This change was inspired by OpenBSDs ping(8) implementation. -- You are receiving this mail because: You are the assignee for the bug.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-239724-227>