Bugtraq mailing list archives
Re: Borderware predictable initial TCP
From: avarvit () CC ECE NTUA GR (Aggelos P. Varvitsiotis)
Date: Thu, 3 Sep 1998 12:14:56 +0300
AFAIK, this problem is not a Firewall-1 problem but a HP-UX problem. Please respond to Gigi Sullivan <sullivan () SECLAB COM> To: BUGTRAQ () NETSPACE ORG Subject: Re: Borderware predictable initial TCP sequence numbers Hello there, This can be applied also to Firewall-1 (CheckPoint) running on an HP-UX 10.X series. bye bye ************************************************* Racer X (Unknown to Speed, Racer X is actually his older brother Rex, who ran away from home years ago) racer-x () altavista net ************************************************* -------------------------------------------------------------------------------- -------------------------------\r\nGet your free email from altavista.iname.com
Fix for HP-UX 9.X (this has been around for quite some time): echo "tcp_random_seq/W 2" | /usr/bin/adb -w /hp-ux /dev/kmem There is a similar fix for 10.X floating around, for whom may be interested to look for it. a.varvitsiotis () iccs ntua gr A.Varvitsiotis ICCS Computer Center National Technical University of Athens
Current thread:
- Re: Security Hole in Axent ESM Jeffrey Hutzelman (Aug 31)
- Re: Security Hole in Axent ESM Caskey L. Dickson (Sep 01)
- Re: Security Hole in Axent ESM Taral (Sep 02)
- Re: Security Hole in Axent ESM Patrick (Sep 02)
- Borderware predictable initial TCP racer-x () ALTAVISTA NET (Sep 02)
- Re: Borderware predictable initial TCP Aggelos P. Varvitsiotis (Sep 03)
- Web servers / possible DOS Attack / mime header flooding Laurent FACQ (Sep 03)
- Re: Web servers / possible DOS Attack / mime header flooding Vanja Hrustic (Sep 03)
- wwwboard.pl vulnerability bugtraq (Sep 03)
- Re: Web servers / possible DOS Attack / mime header flooding Rich Wood (Sep 03)
- Re: Web servers / possible DOS Attack / mime header flooding Daniel Leeds (Sep 03)
- Re: Web servers / possible DOS Attack / mime header flooding Lars Eilebrecht (Sep 03)
- Re: Security Hole in Axent ESM Taral (Sep 02)
- Fwd: [ISN] Another BO detector that is actually a trojan Reuben Yau (Sep 03)
- Security Bulletins Digest (fwd) Piotr Strzy¿ewski (Sep 03)
- Back Orifice detection and removal The Late Ian Angles (Sep 03)
- Re: Security Hole in Axent ESM Caskey L. Dickson (Sep 01)
- Cisco Security Notice: PIX Firewall Manager File Exposure psirt () CISCO COM (Sep 02)