Re: Fw: [bugtraq] NetBSD Security Advisory 2004-006: TCP protoco

看板FB_security作者時間22年前 (2004/04/23 04:12), 編輯推噓0(000)
留言0則, 0人參與, 最新討論串1/2 (看更多)
On Thu, Apr 22, 2004 at 01:51:12PM +0200, Frankye - ML wrote: [...] > Additionally, the 4.4BSD stack from which NetBSD's stack is derived, did > not even check that a RST's sequence number was inside the window. RSTs > anywhere to the left of the window were treated as valid. > > The fact that this has gone unnoticed for so long is an indication that > there have not been a large number of RST/SYN DoS attacks ocurring in the > wild. Hmm, is this the same issue that we corrected in 1998? Certainly we became aware of it because it *was* being exploited. Cheers, -- Jacques Vidrine / nectar@celabo.org / jvidrine@verio.net / nectar@freebsd.org _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
更多 nectar. 的文章
文章代碼(AID): #10Y2Sy00 (FB_security)
更多 nectar. 的文章
文章代碼(AID): #10Y2Sy00 (FB_security)