Date: Mon, 7 Jan 2002 21:41:28 -0600 From: Dave Duchscher <daved@tamu.edu> To: admin <admin@crimelords.org> Cc: Matthias Schuendehuette <msch@snafu.de>, Joe Clarke <marcus@marcuscom.com>, freebsd-security@FreeBSD.ORG, freebsd-stable@FreeBSD.ORG Subject: Re: TCP Sequence-Prediction (4.5-PRE) Message-ID: <20020107214128.A19265@net.tamu.edu> In-Reply-To: <20020107104258.Y23081-100000@crimelords.org>; from admin@crimelords.org on Mon, Jan 07, 2002 at 10:43:55AM -0600 References: <E16MX0z-0004sQ-00@clever.eusc.inter.net> <20020107104258.Y23081-100000@crimelords.org>
next in thread | previous in thread | raw e-mail | index | archive | help
My experience with ISS is that it tends to report false positives quite often. For example, we are still scratching our heads when it reports ISS problems for an IRIX box running Apache. DaveD On Mon, Jan 07, 2002 at 10:43:55AM -0600, admin wrote: > I got the same thing when scanning a 4.4-STABLE box with ISS Scanner...I > personally think it's the scanner, but am still testing myself. > > --emacs > > On Fri, 4 Jan 2002, Matthias Schuendehuette wrote: > > > Hi Joe, > > > > Am Donnerstag, 3. Januar 2002 22:07 schrieben Sie: > > > On Thu, 2002-01-03 at 15:59, Matthias Schuendehuette wrote: > > > > I looked at the published Patch in FreBSD-SA-00:52 but couldn't > > > > find the Sourcecode Sequence to be patched any more (I wasn't > > > > wondering). > > > > > > Is this what you're looking for: > > > > > > ftp://ftp.freebsd.org/pub/FreeBSD/CERT/patches/SA-00%3A52/tcp-iss.pat > > >ch > > > > as I've mentioned above, I *found* that patch but if you look at the > > source files to patch you'll recognize that they're completely > > different now and that the patch doesn't succeed anymore (which isn't > > surprising for noone IMHO). > > > > I think, the point is what ISS states as 'predictable'... I'll wait > > what our iss-service declares - I can't imagine that 4.5-PRERELEASE is > > worse than 4.1.1-STABLE concerning 'tcp prediction'. > > > > Ciao/BSD - Matthias > > > > -- > > *************************************************************************** > > * Matthias Schuendehuette msch@snafu.de * > > * Solmsstrasse 44 * > > * D-10961 Berlin Engineering Systems Support and Operation * > > * Germany (Powered by FreeBSD 4.5-PRERELEASE) * > > *************************************************************************** > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-security" in the body of the message > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020107214128.A19265>