Date: Thu, 08 Aug 2019 19:13:30 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 239724] The ping command doesn't randomize ICMP timestamps and allows system time detection Message-ID: <bug-239724-227@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D239724 Bug ID: 239724 Summary: The ping command doesn't randomize ICMP timestamps and allows system time detection Product: Base System Version: CURRENT Hardware: Any OS: Any Status: New Keywords: patch Severity: Affects Many People Priority: --- Component: bin Assignee: bugs@FreeBSD.org Reporter: gbergling@gmail.com Created attachment 206377 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=3D206377&action= =3Dedit ping(8) patch The current implementation of ping(8) doesn't randomized ICMP timestamps. T= he attached patch addresses this. Due to the applied randomized offset the sys= tem time isn't guessable for an attacker and OS detection is nearly impossible. This change was inspired by OpenBSDs ping(8) implementation. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-239724-227>