From owner-freebsd-stable  Sat Jan  5  0:25:37 2002
Delivered-To: freebsd-stable@freebsd.org
Received: from smart.eusc.inter.net (smart.eusc.inter.net [213.73.101.5])
	by hub.freebsd.org (Postfix) with ESMTP
	id DF21237B416; Sat,  5 Jan 2002 00:25:32 -0800 (PST)
Received: from tc01-n71-228.de.inter.net ([213.73.71.228] helo=there)
	by smart.eusc.inter.net with smtp (Exim 3.22 #3)
	id 16Mm8s-0001Ai-00; Sat, 05 Jan 2002 09:25:26 +0100
Content-Type: text/plain;
  charset="iso-8859-1"
From: Matthias Schuendehuette <msch@snafu.de>
Reply-To: msch@snafu.de
Organization: Micro$oft-free Zone
To: Mike Silbersack <silby@silby.com>
Subject: Re: TCP Sequence-Prediction (4.5-PRE)
Date: Sat, 5 Jan 2002 09:25:25 +0100
X-Mailer: KMail [version 1.3.1]
References: <Pine.BSF.4.30.0201050004410.43880-100000@niwun.pair.com>
In-Reply-To: <Pine.BSF.4.30.0201050004410.43880-100000@niwun.pair.com>
Cc: freebsd-stable@freebsd.org, Peter.Sauerland@siemens.com,
	iss@cert.siemens.de, freebsd-security@freebsd.org
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Message-Id: <E16Mm8s-0001Ai-00@smart.eusc.inter.net>
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-stable.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-stable>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-stable>
X-Loop: FreeBSD.ORG

Am Samstag, 5. Januar 2002 06:06 schrieben Sie:

> Guys, ISN generation has been secure since 4.3-release, though it has
> gone through a few revisions since then.  If ISS disagrees, it is
> what should be inspected, not our ISN generation code.  Changing the
> various sysctls is not going to change the output in any fashion that
> is noticeable to most people.

Basically I agree and I hope, that the ISS people do some 
investigations concerning that issue. But OTOH it's at least a 
parameter to play with (the rfc1948-sysctl). Even if you're right (what 
I expect), I want to have it checked out. The scan lasts for about 15 
minutes and I think it's no big deal to do some more and see if there 
are any reactions by ISS. If my colleague agrees, I'll know more on 
monday...

However, many thanks for your interest and participation so far!

Ciao/BSD - Matthias

-- 
***************************************************************************
* Matthias Schuendehuette	msch@snafu.de	      	 		  *
* Solmsstrasse 44							  *
* D-10961 Berlin		Engineering Systems Support and Operation *
* Germany		      	(Powered by FreeBSD 4.5-PRERELEASE)   	  *
***************************************************************************

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message