Bugtraq mailing list archives

Re: Chances of guessing?

From: newsham () aloha net (Timothy Newsham)
Date: Fri, 27 Jan 1995 21:15:57 -1000 (HST)

to get in.  I'd like to avoid writing a program to exploit this
and testing it several hundred times here to get a figure.


write a program to send out SYN's and get back SYN+ACK's and
record them,  or just record a bunch of SYN+ACK responses from
your host to other hosts along with a timestamp.  Now take
those recorded numbers and see if you can predict the
next value given the previous N values and timestamps and
the next timestamp.

tcpdump can get you sequence numbers and timestamps.

Leo Bicknell - bicknell () vt edu                     | Make a little birdhouse
               bicknell () csugrad cs vt edu          | in your soul......
               bicknell () ussenterprise async vt edu | They Might

Current thread:

Notes from Tsutomo's Talk, (continued)
- - - Notes from Tsutomo's Talk Michael B. Dilger (Jan 26)
    - Re: Router filtering not enough! (Was: Re: CERT advisory ) Pete Shipley (Jan 26)
    - Re: Router filtering not enough! (Was: Re: CERT advisory ) Jon Peatfield (Jan 27)
    - Re: Router filtering not enough! (Was: Re: CERT advisory ) Aleph One (Jan 31)
  - Re: Router filtering not enough! (Was: Re: CERT advisory ) Daniel O'Callaghan (Jan 26)
    - Re: Router filtering not enough! (Was: Re: CERT advisory ) Jonathan M. Bresler (Jan 26)
    - Re: Router filtering not enough! (Was: Re: CERT advisory ) Brian J. Murrell (Jan 26)
    - BOUNCE TEST Scott Chasin (Jan 27)
    - Re: Router filtering not enough! (Was: Re: CERT advisory ) Jon Peatfield (Jan 27)
    - Chances of guessing? Leo Bicknell (Jan 27)
    - Re: Chances of guessing? Timothy Newsham (Jan 27)
  - Re: Router filtering not enough! (Was: Re: CERT advisory ) Darren Reed (Jan 26)
    - Re: Router filtering not enough! (Was: Re: CERT advisory ) Pete Shipley (Jan 26)
  - old post on securing a sunos 4.1.* box joshua geller (Jan 30)
    - Re: old post on securing a sunos 4.1.* box pluvius (Jan 30)
- Re: Router filtering not enough! (Was: Re: CERT advisory ) smb () research att com (Jan 26)
- Re: Re: Router filtering not enough! (Was: Re: CERT advisory ) Pete Hartman (Jan 26)
  - Re: Re: Router filtering not enough! (Was: Re: CERT advisory ) Jonathan M. Bresler (Jan 27)
- Re: Router filtering not enough! (Was: Re: CERT advisory ) Jonathan M. Bresler (Jan 27)
- Re: Router filtering not enough! (Was: Re: CERT advisory ) smb () research att com (Jan 27)
- Re: Router filtering not enough! (Was: Re: CERT advisory ) anonymous () some lame netcom not site (Jan 30)

(Thread continues...)