[3831] in bugtraq
Re: TCP bug on old Solaris box ?
daemon@ATHENA.MIT.EDU (Nathan Lawson)
Sun Dec 22 02:25:29 1996
Date: Sat, 21 Dec 1996 13:19:24 -0800
Reply-To: Nathan Lawson <nlawson@statler.csc.calpoly.edu>
From: Nathan Lawson <nlawson@statler.csc.calpoly.edu>
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@netspace.org>
In-Reply-To: <199612201506.QAA23666@imhotep.cst.cnes.fr> from "Gilles Soulet"
at Dec 20, 96 04:06:44 pm
> Doing nasty things with my old 2.3 Sun box, I noticed that
> Solaris exits gracefully from a listen/accept call BEFORE
> the three-way handshake is completed. That is, you exit
> successfully from accept() as soon as the first SYN arrives !
>
> Solaris 2.5 has a much better behavior and exits from accept()
> only if the three-way handshake is completed. Do people noticed
> something similar ? Any comments ?
This is dynamically configurable on Solaris 2.X via the "tcp_eager_listeners"
variable. You probably want to turn it off.
> PS : Oh, by the way : of course, this is bad news for the guys who
> try to stealthly scan the TCP ports of the solaris 2.3 target, for example
> with ETCP, since the old box urges syslog for incoming connections anyway...
That is one possible use for turning on this parameter.
-Nate
