Penetration Testing mailing list archives
identifying
From: "Mr.P.Taylor" <petert () imagine-sw com>
Date: Wed, 30 May 2001 16:46:46 -0400
if checkpoint uses a 60sec timeout for establishing a 3way and PIX uses a 300sec timeout (which seems too large but it's all the info I could find on it) and Gauntlet uses ??? could you not just send the intial syn wait the timeout value then try to complete the handshake? After exceeding the timeout value would the socket not be closed and would you not get a RST back thus identifying by timeout?
Attachment:
Peter Taylor.vcf
Description:
Current thread:
- identifying Mr.P.Taylor (May 31)
- <Possible follow-ups>
- RE: identifying Clarke, Paul [IT] (May 31)