Date: Thu, 5 Jun 1997 09:26:31 -0400 (EDT) From: Robert N Watson <rnw@andrew.cmu.edu> To: security@freebsd.org Subject: sequence predictability (fwd) Message-ID: <Pine.SUN.3.93l.970605092540.9675A-100000@apriori.cc.cmu.edu>
next in thread | raw e-mail | index | archive | help
Having seen this post on the ntbugtraq mailing list, I was wondering how
preditcabkle sequence numbers in FreeBSD TCP connections were.. And is
this an accurate measurement?
Thanks
----
Robert Watson <rnw+@Andrew.cmu.edu>
---------- Forwarded message ----------
Date: Fri, 30 May 1997 13:20:49 -0400
From: David LeBlanc <dleblanc@ISS.NET>
Reply-To: Windows NT BugTraq Mailing List <NTBUGTRAQ@RC.ON.CA>,
David LeBlanc <dleblanc@ISS.NET>
To: NTBUGTRAQ@RC.ON.CA
Subject: sequence predictability
I had previously stated that NT was TCP sequence predictable. In response
to a question, I did a bit of research on our network and found the following:
This is largely fixed in SP3. Instead of being from 15-85% predictable, it
is now from 5% to ~20% predictable. This is fairly reasonable.
For comparison, IRIX, HP-UX, SunOS, and AIX are all _extremely_ predictable
- 50% or better on a consistent basis. BSD is typically very predictable.
However, Linux and Solaris are best at this, and are consistently 5%
predictable or less. I would like to see NT join this group, but SP3 shows
a substantial improvement.
-----------------------------------------------------------
David LeBlanc | Voice: (770)395-0150 x138
Internet Security Systems, Inc. | Fax: (404)395-1972
41 Perimeter Center East | E-Mail: dleblanc@iss.net
Suite 660 | www: http://www.iss.net/
Atlanta, GA 30328 |
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.SUN.3.93l.970605092540.9675A-100000>