Date: Fri, 06 Jun 1997 15:32:04 -0700 From: Steve <steve@edmweb.com> To: Simon Shapiro <Shimon@i-Connect.Net> Cc: Vadim Kolontsov <vadim@tversu.ac.ru>, security@FreeBSD.ORG Subject: Re: sequence predictability (fwd) Message-ID: <199706062232.PAA11640@kirk.edmweb.com> In-Reply-To: Your message of "Fri, 06 Jun 1997 12:09:35 PDT." <XFMail.970606120935.Shimon@i-Connect.Net>
next in thread | previous in thread | raw e-mail | index | archive | help
>> How about implementing random choosing of start TCP sequence number? >> Of course, it need crypotographicaly strong random numbers generator.. >> I think it will help a lot against TCP seq.numbers predictability >> attack. > > Good Idea. /dev/rand, setup properly produces very good results. Sequence numbers should not be chosen at random. Read RFC 1948.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199706062232.PAA11640>