Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 3 Jan 2002 16:07:43 -0500 (EST)
From:      Mike Silbersack <silby@silby.com>
To:        Matthias Schuendehuette <msch@snafu.de>
Cc:        <freebsd-security@freebsd.org>, <freebsd-stable@freebsd.org>, <Peter.Sauerland@siemens.com>, <iss@cert.siemens.de>
Subject:   Re: TCP Sequence-Prediction (4.5-PRE)
Message-ID:  <Pine.BSF.4.30.0201031604560.45843-100000@niwun.pair.com>
In-Reply-To: <E16MExc-0003MK-00@clever.eusc.inter.net>

next in thread | previous in thread | raw e-mail | index | archive | help

On Thu, 3 Jan 2002, Matthias Schuendehuette wrote:

> Hello,
>
> my machine at work was scanned with the ISS Scanner, Vers. 6.2.1 and it
> complained about TCP Sequence Prediction:
>
> 'The TCP sequence was found to be predictable.'

Run tcpdump while a scan is happening so that you can see what is going on
with the sequence numbers.  4.5's TCP initial sequence numbers should not
be predictable.

Mike "Silby" Silbersack


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.30.0201031604560.45843-100000>