[35526] in North American Network Operators' Group
Re: tcp,guardent,bellovin
daemon@ATHENA.MIT.EDU (Steven M. Bellovin)
Mon Mar 12 09:55:09 2001
From: "Steven M. Bellovin" <smb@research.att.com>
To: Chris Beggy <chrisb@kippona.com>
Cc: nanog@merit.edu
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Mon, 12 Mar 2001 09:50:08 -0500
Message-Id: <20010312145008.4E65335C42@berkshire.research.att.com>
Errors-To: owner-nanog-outgoing@merit.edu
In message <87hf0z59qe.fsf@lackawana.kippona.com>, Chris Beggy writes:
>
>
>tcp,guardent,bellovin are all mentioned in a WSJ article on DOS
>and session hijacking, but I don't see anything on CERT yet.
>
>Any details? Any incidents using the exploit guardent has
>identified?
Not to my knowledge...
The folks at Guardent are talking to CERT and to various vendors about
the problem before releasing any details.
--Steve Bellovin, http://www.research.att.com/~smb
