[379] in Best-of-Security
No subject found in mail header
daemon@ATHENA.MIT.EDU (Darren Reed)
Sat Oct 11 15:21:51 1997
Date: Tue, 7 Oct 1997 10:31:19 +1000
From: Darren Reed <avalon@coombs.anu.edu.au>
Apparently-To: slist@cyber.com.au
X-Originally-To: To: BUGTRAQ@NETSPACE.ORG
X-Originated-From: From: Darren Reed <avalon@coombs.anu.edu.au>
>From owner-bugtraq@NETSPACE.ORG Tue Oct 7 02:19:47 EST 1997 remote from cheops
Received: from brimstone.netspace.org by postbox.anu.edu.au with ESMTP
(1.37.109.16/16.2) id AA286944783; Tue, 7 Oct 1997 02:19:44 +1000
Received: from unknown@netspace.org (port 44804 [128.148.157.6]) by brimstone.netspace.org with ESMTP id <46844-14085>; Mon, 6 Oct 1997 11:27:28 -0400
Received: from NETSPACE.ORG by NETSPACE.ORG (LISTSERV-TCP/IP release 1.8c) with
spool id 5006689 for BUGTRAQ@NETSPACE.ORG; Mon, 6 Oct 1997 11:26:07
-0400
Received: from brimstone.netspace.org (brimstone [128.148.157.143]) by
netspace.org (8.8.7/8.8.2) with ESMTP id LAA27240 for
<BUGTRAQ@NETSPACE.ORG>; Mon, 6 Oct 1997 11:25:24 -0400
Received: from unknown@netspace.org (port 44804 [128.148.157.6]) by
brimstone.netspace.org with ESMTP id <18050-14085>; Mon, 6 Oct 1997
11:25:20 -0400
Approved-By: aleph1@UNDERGROUND.ORG
Received: from dfw.dfw.net (aleph1@DFW.DFW.NET [198.175.15.10]) by netspace.org
(8.8.7/8.8.2) with SMTP id LAA26198 for <bugtraq@netspace.org>; Mon,
6 Oct 1997 11:20:02 -0400
Received: from localhost by dfw.dfw.net (4.1/SMI-4.1) id AA20717; Mon, 6 Oct 97
10:22:10 CDT
Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Message-Id: <Pine.SUN.3.94.971006100841.14830C-100000@dfw.dfw.net>
Date: Mon, 6 Oct 1997 10:22:09 -0500
Reply-To: Aleph One <aleph1@DFW.NET>
Sender: avalon
From: Aleph One <aleph1@DFW.NET>
Subject: HP-UX tcp_random_seq
To: BUGTRAQ@NETSPACE.ORG
I dont belive this is been given enough distribution. Under HP-UX you can
configure it to use random TCP sequence numbers by setting the
tcp_random_seq variable. The values are:
0 - old behavior (default)
1 - rand(3) bahavior
2 - rand48(3) behhavior
The seed value for the rand*() functions is based on the time when
tcp_init() (or nettune) is called, so dont make your uptime public
(i.e. rstatd).
Under 10.X use nettune to set tcp_random_seq. Under 9.X you will have to
use the debuger, and then reboot.
echo "tcp_random_seq?W 2" | adb -w /hp-ux
Aleph One / aleph1@dfw.net
http://underground.org/
KeyID 1024/948FD6B5
Fingerprint EE C9 E8 AA CB AF 09 61 8C 39 EA 47 A8 6A B8 01
