From owner-freebsd-net@FreeBSD.ORG  Thu May 19 09:50:20 2005
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id 0DCC116A4CE; Thu, 19 May 2005 09:50:20 +0000 (GMT)
Received: from ms-dienst.rz.rwth-aachen.de (ms-2.rz.RWTH-Aachen.DE
	[134.130.3.131])	by mx1.FreeBSD.org (Postfix) with ESMTP
	id 8FC4C43D9E; Thu, 19 May 2005 09:50:19 +0000 (GMT)
	(envelope-from chris@haakonia.hitnet.rwth-aachen.de)
Received: from r220-1 (r220-1.rz.RWTH-Aachen.DE [134.130.3.31])
 by ms-dienst.rz.rwth-aachen.de
 (iPlanet Messaging Server 5.2 Patch 2 (built Jul 14 2004))
 with ESMTP id <0IGQ00DWMDT6DF@ms-dienst.rz.rwth-aachen.de>; Thu,
 19 May 2005 11:46:19 +0200 (MEST)
Received: from relay.rwth-aachen.de ([134.130.3.1])
	by r220-1 (MailMonitor for SMTP v1.2.2 ) ; Thu,
 19 May 2005 11:46:18 +0200 (MEST)
Received: from haakonia.hitnet.rwth-aachen.de
	(mulzirak.hitnet.RWTH-Aachen.DE [137.226.181.149])
	j4J9kHji021290; Thu, 19 May 2005 11:46:17 +0200 (MEST)
Received: by haakonia.hitnet.rwth-aachen.de (Postfix, from userid 1001)
	id 8FB9A2845D; Thu, 19 May 2005 11:46:17 +0200 (CEST)
Date: Thu, 19 May 2005 11:46:17 +0200
From: Christian Brueffer <chris@unixpages.org>
In-reply-to: <428C5F89.2E595E02@freebsd.org>
To: Andre Oppermann <andre@freebsd.org>
Message-id: <20050519094617.GB932@unixpages.org>
MIME-version: 1.0
Content-type: multipart/signed; boundary=TakKZr9L6Hm6aLOc;
 protocol="application/pgp-signature"; micalg=pgp-sha1
Content-disposition: inline
User-Agent: Mutt/1.5.6i
X-Operating-System: FreeBSD 5.4-STABLE
X-PGP-Key: http://people.FreeBSD.org/~brueffer/brueffer.key.asc
X-PGP-Fingerprint: A5C8 2099 19FF AACA F41B  B29B 6C76 178C A0ED 982D
References: <20050519093736.GA932@unixpages.org>
	<428C5F89.2E595E02@freebsd.org>
cc: freebsd-net@freebsd.org
Subject: Re: tcp timestamp vulnerability?
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 19 May 2005 09:50:20 -0000


--TakKZr9L6Hm6aLOc
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Thu, May 19, 2005 at 11:42:33AM +0200, Andre Oppermann wrote:
> Christian Brueffer wrote:
> >=20
> > Hi,
> >=20
> > has anyone taken a look at http://www.kb.cert.org/vuls/id/637934?
>=20
> sys/netinet/tcp_input.c Revision 1.270, Sun Apr 10 05:24:59 2005 UTC
>  (5 weeks, 4 days ago) by ps
>  Branch: MAIN
>  Changes since 1.269: +23 -3 lines
>=20
>  - Tighten up the Timestamp checks to prevent a spoofed segment from
>    setting ts_recent to an arbitrary value, stopping further
>    communication between the two hosts.
>  - If the Echoed Timestamp is greater than the current time,
>    fall back to the non RFC 1323 RTT calculation.
>=20
>  Submitted by:	Raja Mukerji (raja at moselle dot com)
>  Reviewed by:	Noritoshi Demizu, Mohan Srinivasan
>=20

Thanks.  Since I got this from the Heise Newsticker I'll see if I can
get them to update their story.

- Christian

--=20
Christian Brueffer	chris@unixpages.org	brueffer@FreeBSD.org
GPG Key:	 http://people.freebsd.org/~brueffer/brueffer.key.asc
GPG Fingerprint: A5C8 2099 19FF AACA F41B  B29B 6C76 178C A0ED 982D

--TakKZr9L6Hm6aLOc
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (FreeBSD)

iD8DBQFCjGBpbHYXjKDtmC0RAlyUAKCI6FMWX1ROw4GziFxOBR//wOw0xQCeOYAl
UUFdF3TRh4wuKMzqYyAmxos=
=TzWA
-----END PGP SIGNATURE-----

--TakKZr9L6Hm6aLOc--