[3464] in bugtraq
Re: Excellent host SYN-attack fix for BSD hosts
daemon@ATHENA.MIT.EDU (Alan Cox)
Tue Oct 15 13:56:37 1996
Date: Tue, 15 Oct 1996 09:27:20 +0100
Reply-To: Alan Cox <coxa@cableol.net>
From: Alan Cox <coxa@cableol.net>
X-To: jaw@Op.Net
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@NETSPACE.ORG>
In-Reply-To: <199610141743.NAA23076@sulcus.op.net> from "Jeff Weisberg" at Oct
14, 96 01:43:09 pm
> | It also breaks TCP's algorithm for
> | recognizing stale data.
>
> how so?
The ISS must always be going forward, and at a suitable rate. If you look
at things like the MD5 secret based secure sequence numbers you will
see that they are monotonically increasing w.r.t. a single IP address
Alan
