From owner-freebsd-security  Wed Apr 11 23: 4:46 2001
Delivered-To: freebsd-security@freebsd.org
Received: from silby.com (adam042-060.resnet.wisc.edu [146.151.42.60])
	by hub.freebsd.org (Postfix) with ESMTP id 6F07337B506
	for <freebsd-security@FreeBSD.ORG>; Wed, 11 Apr 2001 23:04:37 -0700 (PDT)
	(envelope-from silby@silby.com)
Received: (qmail 2289 invoked by uid 1000); 12 Apr 2001 06:04:36 -0000
Received: from localhost (sendmail-bs@127.0.0.1)
  by localhost with SMTP; 12 Apr 2001 06:04:36 -0000
Date: Thu, 12 Apr 2001 01:04:36 -0500 (CDT)
From: Mike Silbersack <silby@silby.com>
To: Mike Allen <mikeallen99@home.com>
Cc: Mark T Roberts <newsletter@marktroberts.com>,
	<freebsd-security@FreeBSD.ORG>
Subject: Re: non-random IP IDs
In-Reply-To: <3AD54669.EEF91A5C@home.com>
Message-ID: <Pine.BSF.4.31.0104120103470.2153-100000@achilles.silby.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org


On Wed, 11 Apr 2001, Mike Allen wrote:

> Predictible IP ID numbers can be used by an attacker to hijack your
> session causing the following effects:
>
>   1.  The successful attacker can 'take over' your session and
>       do anything he/she wants to do with your files.  No log

You're confusing ip ids with tcp sequence numbers.  ip ids have no such
importance.

Mike "Silby" Silbersack


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message