Re: [Full-Disclosure] IETF Draft - Fix for TCP vulnerability (fw

看板FB_security作者時間22年前 (2004/04/23 00:11), 編輯推噓0(000)
留言0則, 0人參與, 最新討論串13/23 (看更多)
On Thu, 22 Apr 2004, Darren Reed wrote: > > 1. RSTs exactly at last_ack_sent (always accepted) > > To pursue this thought further, if a FIN has been sent or received > (connection has migrated from ESTABLISHED to CLOSE_WAIT or something > else) then receiving an RST at this point should be much less of a > problem, yes ? > > The only drawback is I've seen sessions where there's a last ditch > attempt to get data through even though a FIN has been received. > > Darren Are you suggesting that we use the strict check during the ESTABLISHED phase, and the window-wide check during all other phases? Mike "Silby" Silbersack _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
更多 silby. 的文章
文章代碼(AID): #10X-wW00 (FB_security)
討論串 (同標題文章)
完整討論串 (本文為第 13 之 23 篇):
排序: 最新先 | 最舊先 | 留言數
在新視窗開啟完整討論串 (共23篇)
更多 silby. 的文章
文章代碼(AID): #10X-wW00 (FB_security)