Snort mailing list archives

Re: [Snort-devel] Detecting TCP Timestamp PAWS DoS from tracefile

From: "J.Smith" <lbalbalba () hotmail com>
Date: Sun, 7 Aug 2005 14:10:43 +0200

Sorry, but our security policy will not allow us to submit the actualtracefile (anonymized or not).

However, a proof of concept exploit is provided at securityfocus, so youshould be able to reproduce the issue for yourselves.


http://www.securityfocus.com/bid/13676/exploit

----- Original Message -----From: "rmkml" <rmkml () free fr>

To: "J.Smith" <lbalbalba () hotmail com>
Sent: Sunday, August 07, 2005 1:52 PM
Subject: Re: [Snort-devel] Detecting TCP Timestamp PAWS DoS from tracefile

Possible send (anonymazing ip) tracefile/pcapfile to the list ?



-------------------------------------------------------
SF.Net email is Sponsored by the Better Software Conference & EXPO
September 19-22, 2005 * San Francisco, CA * Development Lifecycle Practices
Agile & Plan-Driven Development * Managing Projects & Teams * Testing & QA
Security * Process Improvement & Measurement * http://www.sqe.com/bsce5sf
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

Current thread:

Detecting TCP Timestamp PAWS DoS from tracefile J.Smith (Aug 07)
- Message not available
  - Re: [Snort-devel] Detecting TCP Timestamp PAWS DoS from tracefile J.Smith (Aug 07)
    - Message not available
    - Re: [Snort-devel] Detecting TCP Timestamp PAWS DoS from tracefile J.Smith (Aug 07)
    - Message not available
    - Message not available
    - Re: [Snort-devel] Detecting TCP Timestamp PAWS DoS from tracefile J.Smith (Aug 07)