User: Password:
|
|
Subscribe / Log in / New account

Inferring TCP sequence numbers

Inferring TCP sequence numbers

Posted Jan 4, 2013 12:28 UTC (Fri) by spender (subscriber, #23067)
Parent article: Inferring TCP sequence numbers

Two things:

1) grsecurity has restricted /proc/net since 2001 or so and avoided the associated problems with these counters.
2) Why have I not seen any CVEs for this or the patches this summer associated with similar attacks?

-Brad


(Log in to post comments)

Does it affect TLS/SSL connections?

Posted Jan 4, 2013 18:41 UTC (Fri) by scripter (subscriber, #2654) [Link]

Is it possible to meaningfully inject packets for applications that use TLS/SSL?

Does it affect TLS/SSL connections?

Posted Jan 4, 2013 21:54 UTC (Fri) by zlynx (subscriber, #2285) [Link]

It shouldn't be possible because the encryption won't match up. However it could be used to abort the connections with corrupt data or FIN packets.


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds