Bugtraq mailing list archives

Re: Hijacking tool

From: Alec.Muffett () UK Sun COM (Alec Muffett)
Date: Tue, 24 Jan 1995 14:27:29 +0000 (GMT)


If you're hijacking *connections* isn't it much easier to just steal
the filehandles in the kernel?


Not if you're on entirely another host.

That's the point of RTM-Snr's attack, as expanded upon by
Bellovin. Guessing sequence numbers and flooding the remote machine
gives you a window of opportunity to slip in a forged packet with the
right sequence number, and usurp the connection entirely from that
point onwards.

- but you know this, of course. 8-)

        - alec

Current thread:

Hijacking tool Christopher Klaus (May 10)
- Re: Hijacking tool Paul Ferguson (Jan 24)
  - Re: Hijacking tool Casper Dik (Jan 24)
    - Re: Hijacking tool Alec Muffett (Jan 24)
    - Re: Hijacking tool Alan Hannan (Jan 24)
    - Re: Hijacking tool bmanning () isi edu (Jan 24)
    - Re: Hijacking tool Scott D. Yelich (Jan 25)
  - Re: Hijacking tool Oliver Friedrichs (Jan 24)
    - Re: Hijacking tool Oliver Friedrichs (Jan 24)
  - Re: Hijacking tool Eric Conrad (Jan 24)
    - Re: Hijacking tool Jim Duncan (Jan 24)
    - Re: Hijacking tool John Evans (Jan 24)
- <Possible follow-ups>
- Re: Hijacking tool jim () Tadpole COM (Jan 23)
  - Re: Hijacking tool Darren Reed (Jan 23)

(Thread continues...)