Re: IP ADDRESS

From: Alun Jones (alun@texis.com)
Date: 02/20/02

• Next message: Marty Fouts: "Re: Microsoft finally acknowledges the security drumbeats"
• Previous message: Philip J. Koenig: "Re: Microsoft finally acknowledges the security drumbeats"
• In reply to: Dave Korn: "Re: IP ADDRESS"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: alun@texis.com (Alun Jones)
Date: Wed, 20 Feb 2002 17:12:49 GMT

In article <v1Nc8.2610$5o.1450920@newsr2.u-net.net>, "Dave Korn"
<no.spam@my.mailbox.invalid> wrote:
> It would really have to be a UDP protocol for that to make any difference,
>wouldn't it? Since there's always going to be the ISN problem with TCP, and
>predicting the ISN of a new connection is just as difficult no matter how
>much data will be sent once the connection is established. I was wondering
>if T/TCP mightn't be more easily spoofed because you need send only one
>packet, but you still have to do a proper 3WH the first time anyway....
>unless there's a way around it?

Initial Sequence Numbers in many operating systems of the past have been
easily guessed. I'm not currently 'up' on how easily guessed they are in
current operating systems, but I doubt the state of play has advanced overly
much. With SSL, by contrast, the client and server can choose (to a certain
degree) how much they need to ensure the identity of the party with which they
are talking, and to negotiate this through means that do not go down the same
route as the conversation [for instance, a server's certificate can be
verified against a copy that is mailed through the post on a disk, etc]

Alun.
~~~~

[Note that answers to questions in newsgroups are not generally
invitations to contact me personally for help in the future.]

-- 
Texas Imperial Software   | Try WFTPD, the Windows FTP Server. Find us at
1602 Harvest Moon Place   | http://www.wftpd.com or email alun@texis.com
Cedar Park TX 78613-1419  | VISA/MC accepted.  NT-based sites, be sure to
Fax/Voice +1(512)258-9858 | read details of WFTPD Pro for NT.

---

• Next message: Marty Fouts: "Re: Microsoft finally acknowledges the security drumbeats"
• Previous message: Philip J. Koenig: "Re: Microsoft finally acknowledges the security drumbeats"
• In reply to: Dave Korn: "Re: IP ADDRESS"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Crashing Unix ... overflow, parameter error, running an aliased command while setuid root, etc ... Texas Imperial Software | Try WFTPD, the Windows FTP Server. ... Fax/Voice +1258-9858 | read details of WFTPD Pro for NT. ... (comp.security.unix) Re: More vulnerabilities from Micros~ ... Is this supposed to be news? ... that prevents file access when the machine is subject to physical access. ... Texas Imperial Software | Try WFTPD, the Windows FTP Server. ... Fax/Voice +1258-9858 | read details of WFTPD Pro for XP/2000/NT. ... (microsoft.public.security) Re: Fixable ... >user can get to his windows, which basically means all applications the ... on what you mean by "background user". ... Texas Imperial Software | Try WFTPD, the Windows FTP Server. ... Fax/Voice +1258-9858 | read details of WFTPD Pro for XP/2000/NT. ... (comp.security.misc) Re: Privilege-escalation attacks on NT-based Windows are unfixable ... >the heap non-executable is like locking the back door. ... Texas Imperial Software | Try WFTPD, the Windows FTP Server. ... Fax/Voice +1258-9858 | read details of WFTPD Pro for XP/2000/NT. ... (comp.security.misc) Re: WHAT IS TOP POSTING ... As to why this is bad, consider the following, in top-post style: ... >> Doctor. ... Texas Imperial Software | Try WFTPD, the Windows FTP Server. ... Fax/Voice +1258-9858 | read details of WFTPD Pro for XP/2000/NT. ... (microsoft.public.security)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > comp.security.misc  > 2002-02