From owner-freebsd-hackers Thu Sep 3 14:42:50 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id OAA28159 for freebsd-hackers-outgoing; Thu, 3 Sep 1998 14:42:50 -0700 (PDT) (envelope-from owner-freebsd-hackers@FreeBSD.ORG) Received: from ocean.campus.luth.se (ocean.campus.luth.se [130.240.194.116]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id OAA28146 for ; Thu, 3 Sep 1998 14:42:38 -0700 (PDT) (envelope-from karpen@ocean.campus.luth.se) Received: (from karpen@localhost) by ocean.campus.luth.se (8.9.1/8.9.1) id XAA14593; Thu, 3 Sep 1998 23:37:25 +0200 (CEST) (envelope-from karpen) From: Mikael Karpberg Message-Id: <199809032137.XAA14593@ocean.campus.luth.se> Subject: Re: Response to RST validation problem? In-Reply-To: <35EEE839.D3169E59@dal.net> from Studded at "Sep 3, 98 12:04:25 pm" To: Studded@dal.net (Studded) Date: Thu, 3 Sep 1998 23:37:25 +0200 (CEST) Cc: freebsd-hackers@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL32 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG According to Studded: > As I'm sure everyone is aware, there was a post on bugtraq Sunday > regarding a vulnerability in our TCP code which leaves the system open > to attack via RST packets. In the past the project has always responded Umm... For those of us that don't have time to read Yet Another Mailing List and are therefor not subscribed to bugtraq... What is the effect of this attack? I assume you can send some form of packet to the a FreeBSD machine from a remote computer and get something to happen. What? Crash, DoS, or rootprompt? Personally I'm not too worried if it's not the latter. I'll just reboot my server is something happens. :-) I'll upgrade when there is a patch... But if there's a breakin bug I kinda need to stop it. /Mikael To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message