Date: Sat, 10 Aug 2019 15:18:10 +0000 From: bugzilla-noreply@freebsd.org To: bugs@FreeBSD.org Subject: [Bug 239724] The ping command doesn't randomize ICMP timestamps and allows system time detection Message-ID: <bug-239724-227-0t1TRlf9WZ@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-239724-227@https.bugs.freebsd.org/bugzilla/> References: <bug-239724-227@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D239724 --- Comment #3 from Conrad Meyer <cem@freebsd.org> --- So the random data in this case is being used as a one-time pad in a messag= e to ourself to provide privacy. The OTP is subject to forgery. Since we're talking to ourselves, we have other options. We could put a MAC on it to prevent forgery. Then we just have classic AEA= D or EtM on the payload data ("now"). Or we could just keep a local association of random tokens to send times in= the program (any map data structure), and just send the tokens and look up echo time on response. The latter requires some modest memory use that doesn't seem to matter in typical ping use ("-i 1"). The former doesn't require the additional memory use. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-239724-227-0t1TRlf9WZ>