From owner-freebsd-security Wed Apr 11 21:46:39 2001 Delivered-To: freebsd-security@freebsd.org Received: from mail01.san.yahoo.com (mail01.san.yahoo.com [209.132.1.35]) by hub.freebsd.org (Postfix) with ESMTP id 5244537B50C for ; Wed, 11 Apr 2001 21:46:24 -0700 (PDT) (envelope-from newsletter@marktroberts.com) Received: from nsohotel5 (206.253.226.210) by mail01.san.yahoo.com (5.1.062) id 3ACA395D00810CF8 for freebsd-security@FreeBSD.ORG; Wed, 11 Apr 2001 21:39:53 -0700 Message-ID: <001f01c0c30b$805b0840$d2e2fdce@netrex.com> Reply-To: "Mark T Roberts" From: "Mark T Roberts" To: Subject: non-random IP IDs Date: Thu, 12 Apr 2001 00:46:12 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org The other night I did a nessus security scan on my freeBSD box and I got the following warning. I am hopping someone on this mailing list can give me a better idea what this warning means. Thanks Mark NESSUS Warning... The remote host uses non-random IP IDs, that is, it is possible to predict the next value of the ip_id field of the ip packets sent by this host. An attacker may use this feature to determine if the remote host sent a packet in reply to another request. This may be used for portscanning and other things. Solution : Contact your vendor for a patch Risk factor : Low To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message