[5361] in bugtraq
HP-UX tcp_random_seq
daemon@ATHENA.MIT.EDU (Aleph One)
Mon Oct 6 11:31:01 1997
Date: Mon, 6 Oct 1997 10:22:09 -0500
Reply-To: Aleph One <aleph1@DFW.NET>
From: Aleph One <aleph1@DFW.NET>
To: BUGTRAQ@NETSPACE.ORG
I dont belive this is been given enough distribution. Under HP-UX you can
configure it to use random TCP sequence numbers by setting the
tcp_random_seq variable. The values are:
0 - old behavior (default)
1 - rand(3) bahavior
2 - rand48(3) behhavior
The seed value for the rand*() functions is based on the time when
tcp_init() (or nettune) is called, so dont make your uptime public
(i.e. rstatd).
Under 10.X use nettune to set tcp_random_seq. Under 9.X you will have to
use the debuger, and then reboot.
echo "tcp_random_seq?W 2" | adb -w /hp-ux
Aleph One / aleph1@dfw.net
http://underground.org/
KeyID 1024/948FD6B5
Fingerprint EE C9 E8 AA CB AF 09 61 8C 39 EA 47 A8 6A B8 01
