[703] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: NYT Article this morning

daemon@ATHENA.MIT.EDU (Perry E. Metzger)
Mon Jan 23 18:57:00 1995

To: Christopher Klaus <cklaus@shadow.net>
Cc: bugtraq@fc.net
In-Reply-To: Your message of "Mon, 23 Jan 1995 15:29:18 EST."
             <199501232029.PAA15899@shadow.net> 
Reply-To: perry@imsi.com
Date: Mon, 23 Jan 1995 15:37:36 -0500
From: "Perry E. Metzger" <perry@imsi.com>

Christopher Klaus says:
> To fully fix the problem will require all the vendors to come out with
> kernel patches to make the TCP sequence numbering difficult to
> guess,

Even that is insufficient, actually. If you see a packet going by, you
can still try to jam the works up and steal the connection anyway. The
only permanent solution is a cryptographic security protocol for the
net -- one is actually in the works now in the IETF.

Perry


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[703] in bugtraq

Re: NYT Article this morning

daemon@ATHENA.MIT.EDU (Perry E. Metzger)Mon Jan 23 18:57:00 1995

daemon@ATHENA.MIT.EDU (Perry E. Metzger)
Mon Jan 23 18:57:00 1995