From owner-freebsd-security  Sat Jul  7 11:52:17 2001
Delivered-To: freebsd-security@freebsd.org
Received: from mx0.gmx.net (mx0.gmx.net [213.165.64.100])
	by hub.freebsd.org (Postfix) with SMTP id 8A83937B403
	for <freebsd-security@freebsd.org>; Sat,  7 Jul 2001 11:52:13 -0700 (PDT)
	(envelope-from MichaelNottebrock@gmx.net)
Received: (qmail 4678 invoked by uid 0); 7 Jul 2001 18:52:12 -0000
Date: Sat, 7 Jul 2001 20:52:12 +0200 (MEST)
From: Michael Nottebrock <MichaelNottebrock@gmx.net>
To: freebsd-security@freebsd.org
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="========GMXBoundary1199994531932"
Subject: IPSEC & TCP sequence number generation
X-Priority: 3 (Normal)
X-Authenticated-Sender: #0000443188@gmx.net
X-Authenticated-IP: [217.4.105.75]
Message-ID: <1199.994531932@www25.gmx.net>
X-Mailer: WWW-Mail 1.5 (Global Message Exchange)
X-Flags: 0001
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

This is a MIME encapsulated multipart message -
please use a MIME-compliant e-mail program to open it.

Dies ist eine mehrteilige Nachricht im MIME-Format -
bitte verwenden Sie zum Lesen ein MIME-konformes Mailprogramm.

--========GMXBoundary1199994531932
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit

I recently recompiled my FreeBSD 4.3-STABLE kernel with

options IPSEC
options IPSEC_ESP
options IPSEC_DEBUG

in order to experiment with a IPSEC-VPN.

When I scanned myself from a few remote machines today, I noticed that 
nmap -O reports a tcp sequence prediction class "trivial time dependency", 
difficulty=0 (trivial joke), before enabling IPSEC it used to be all 9's. 
Has anyone else experienced this? Have I overlooked something or is this 
normal behaviour?


Greetings,

Michael Nottebrock

-- 
GMX - Die Kommunikationsplattform im Internet.
http://www.gmx.net

GMX Tipp:

Machen Sie Ihr Hobby zu Geld bei unserem Partner 1&1!
http://profiseller.de/info/index.php3?ac=OM.PS.PS003K00596T0409a
--========GMXBoundary1199994531932
Content-Type: application/octet-stream; name="
"
Content-Transfer-Encoding: base64
Content-Disposition: attachment; filename="
"

--========GMXBoundary1199994531932--


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message