From owner-freebsd-questions Wed Aug 8 16:56:54 2001 Delivered-To: freebsd-questions@freebsd.org Received: from obsecurity.dyndns.org (adsl-64-165-226-48.dsl.lsan03.pacbell.net [64.165.226.48]) by hub.freebsd.org (Postfix) with ESMTP id 39BD437B643 for ; Wed, 8 Aug 2001 16:56:41 -0700 (PDT) (envelope-from kris@obsecurity.org) Received: by obsecurity.dyndns.org (Postfix, from userid 1000) id D42B066C4D; Wed, 8 Aug 2001 16:56:39 -0700 (PDT) Date: Wed, 8 Aug 2001 16:56:39 -0700 From: Kris Kennaway To: John Jennings Cc: freebsd-questions@FreeBSD.ORG Subject: Re: uptime values in kernel Message-ID: <20010808165638.A91680@xor.obsecurity.org> References: <200108082246.PAA01726@mail19.bigmailbox.com> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-md5; protocol="application/pgp-signature"; boundary="mP3DRpeJDSE+ciuQ" Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <200108082246.PAA01726@mail19.bigmailbox.com>; from my_pinup_girl@www.com on Wed, Aug 08, 2001 at 03:46:48PM -0700 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG --mP3DRpeJDSE+ciuQ Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Aug 08, 2001 at 03:46:48PM -0700, John Jennings wrote: > Hello all: >=20 > As stated on this page: >=20 > http://uptime.netcraft.com/up/accuracy.html#whichos >=20 > FreeBSD 3.0 and later 'default configuration' does not supply > accurate uptime statistics to Netcraft so that they may plot a > graph. What is meant by 'default configuration'? I got a few > pointers on DALnet #freebsd. They said that I am attempting to > 'change the kernel so that it displays the correct uptime.' > > I do believe this is a matter of little importance; but, for > knowledge sake, I would like some information on how to reach my > desired goal. Does it involve compiling a new kernel or simply > changing an obscure configuration file? The current implementation of RFC 1323 TCP extensions leaks the system uptime to remote systems. RFC 1323 was disabled in 3.0 because it causes certain ancient (really ancient) hardware to break, but it's recently been re-enabled because a number of other OSes didn't bother about breaking that hardware, and so it's basically safe now. You can enable it in /etc/rc.conf by setting tcp_extensions=3D"YES". Note that leaking of system uptime has indirect security implications: there have been a number of attacks in the past which rely on, or are made much easier by, a precise knowledge of the system uptime. Kris --mP3DRpeJDSE+ciuQ Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE7cdG1Wry0BWjoQKURAnWzAJsFUdmpHYeRXbuY/t5rpLtzqb1d5gCfRyIS MFYsQ4QFFppqaVrTWg592Mk= =lgSM -----END PGP SIGNATURE----- --mP3DRpeJDSE+ciuQ-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message