Date: Thu, 08 Aug 2019 19:13:30 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 239724] The ping command doesn't randomize ICMP timestamps and allows system time detection Message-ID: <bug-239724-227@https.bugs.freebsd.org/bugzilla/>
index | next in thread | raw e-mail
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=239724 Bug ID: 239724 Summary: The ping command doesn't randomize ICMP timestamps and allows system time detection Product: Base System Version: CURRENT Hardware: Any OS: Any Status: New Keywords: patch Severity: Affects Many People Priority: --- Component: bin Assignee: bugs@FreeBSD.org Reporter: gbergling@gmail.com Created attachment 206377 --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=206377&action=edit ping(8) patch The current implementation of ping(8) doesn't randomized ICMP timestamps. The attached patch addresses this. Due to the applied randomized offset the system time isn't guessable for an attacker and OS detection is nearly impossible. This change was inspired by OpenBSDs ping(8) implementation. -- You are receiving this mail because: You are the assignee for the bug.help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-239724-227>