From owner-freebsd-hackers@FreeBSD.ORG Thu Oct 9 12:29:43 2008 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 16B3C106568B for ; Thu, 9 Oct 2008 12:29:43 +0000 (UTC) (envelope-from sigtrm@gmail.com) Received: from rv-out-0506.google.com (rv-out-0506.google.com [209.85.198.230]) by mx1.freebsd.org (Postfix) with ESMTP id E00538FC17 for ; Thu, 9 Oct 2008 12:29:42 +0000 (UTC) (envelope-from sigtrm@gmail.com) Received: by rv-out-0506.google.com with SMTP id b25so4441408rvf.43 for ; Thu, 09 Oct 2008 05:29:41 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to :subject:mime-version:content-type; bh=Xx4F7l6e5nlmXwD5cyrDYmq45dbhkvc52u+PWoUrjzI=; b=cIUQXe9mxBXIRoEd7Pd6MO64ZCdnE4+af8B7ihiqZLZPsLExqqeNM6jUAQFE2uPATR JZzzuOFZzQUCU2gLd0ec2KhPU9yHhayVIdAgKxi/XFHdTK60k5v/kXLPpqEiQdzpWR4E z5XNLqYz28a0i72bOO7IQXdCUz5s7VTcKftFY= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:mime-version:content-type; b=kMcihb4IU6odG2y2Uu0sELSQqAFd9EHvWl0o2EwzpfKAgM+YwVn1N6imxMrj1Mg3QC R9opqu3uOsakgZdiH1YSnbjUO7hY7uver+hmb4rWBRcrL0cGWZxkIaKO6V3eJUJe3Zen kbB7hlOnwqUz2Ubf8AiKPXaPN3evG8U6pCeqw= Received: by 10.141.75.17 with SMTP id c17mr6038796rvl.212.1223554093706; Thu, 09 Oct 2008 05:08:13 -0700 (PDT) Received: by 10.141.185.21 with HTTP; Thu, 9 Oct 2008 05:08:13 -0700 (PDT) Message-ID: Date: Thu, 9 Oct 2008 14:08:13 +0200 From: "Lukasz Jaroszewski" To: freebsd-hackers@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Subject: Sockstress X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Oct 2008 12:29:43 -0000 Hi, I am wondering about sockstres informations recently published. I cant really figure what new they could found. Do we have anything to worry about? ;-) http://searchsecurity.techtarget.com/news/article/0,289142,sid14_gci1332898,00.html ``(...)Sockstress computes and stores so-called client-side SYN cookies and enables Lee and Louis to specify a destination port and IP address. The method allows them to complete the TCP handshake without having to store any values, which takes time and resources. "We can then say that we want to establish X number of TCP connections on that address and that we want to use this attack type, and it does it," Lee said.(...)'' ``(...)Lee said that when and _if_ specific vendors develop workarounds for the issues, they will release details of those issues.(...)'' Was FreeBSD team contacted? ;) -- Regards/Pozdrawiam LVJ -------------------------------------------------------------------------------------------------- They must find it difficult, those that take authority as truth, instead of truth as the authority