From owner-freebsd-stable Fri Jan 4 9:32:26 2002 Delivered-To: freebsd-stable@freebsd.org Received: from creme-brulee.marcuscom.com (rdu57-28-046.nc.rr.com [66.57.28.46]) by hub.freebsd.org (Postfix) with ESMTP id 46AF237B419; Fri, 4 Jan 2002 09:32:18 -0800 (PST) Received: from shumai.marcuscom.com (marcus@shumai.marcuscom.com [192.168.1.4]) by creme-brulee.marcuscom.com (8.11.6/8.11.6) with ESMTP id g04HVhv34493; Fri, 4 Jan 2002 12:31:43 -0500 (EST) (envelope-from marcus@marcuscom.com) Subject: Re: TCP Sequence-Prediction (4.5-PRE) From: Joe Clarke To: msch@snafu.de Cc: freebsd-security@FreeBSD.ORG, freebsd-stable@FreeBSD.ORG In-Reply-To: References: <1010092075.86152.20.camel@shumai.marcuscom.com> Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Evolution/1.0 (Preview Release) Date: 04 Jan 2002 12:32:29 -0500 Message-Id: <1010165550.16995.2.camel@shumai.marcuscom.com> Mime-Version: 1.0 Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Fri, 2002-01-04 at 11:16, Matthias Schuendehuette wrote: > Hi Joe, > > Am Donnerstag, 3. Januar 2002 22:07 schrieben Sie: > > On Thu, 2002-01-03 at 15:59, Matthias Schuendehuette wrote: > > > I looked at the published Patch in FreBSD-SA-00:52 but couldn't > > > find the Sourcecode Sequence to be patched any more (I wasn't > > > wondering). > > > > Is this what you're looking for: > > > > ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-00%3A52/tcp-iss.pat > >ch > > as I've mentioned above, I *found* that patch but if you look at the > source files to patch you'll recognize that they're completely > different now and that the patch doesn't succeed anymore (which isn't > surprising for noone IMHO). > > I think, the point is what ISS states as 'predictable'... I'll wait > what our iss-service declares - I can't imagine that 4.5-PRERELEASE is > worse than 4.1.1-STABLE concerning 'tcp prediction'. Later FreeBSD 4.x's use arc4random for ISS. It get all 9's from nmap, and is completely unguessable. Upgrading to 4.4-RELEASE or 4.5-PRE will set you up. Joe > > Ciao/BSD - Matthias > > -- > *************************************************************************** > * Matthias Schuendehuette msch@snafu.de * > * Solmsstrasse 44 * > * D-10961 Berlin Engineering Systems Support and Operation * > * Germany (Powered by FreeBSD 4.5-PRERELEASE) * > *************************************************************************** > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-stable" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message