TCP RST attack
Mark Johnston
mjohnston at skyweb.ca
Tue Apr 20 13:46:35 PDT 2004
"Crist J. Clark" <cristjc at comcast.net> wrote:
> Arguments on the severity of the bug aside, FreeBSD does not
> have a working RFC2385 implementation.
It looks like bms@ committed half of one in February:
http://docs.freebsd.org/cgi/getmsg.cgi?fetch=1056731+0+/usr/local/www/db/text/2004/cvs-all/20040215.cvs-all
The vulnerability would still exist when the spoofed packets are directed
towards a FreeBSD router, but it looks like this would protect its
RFC2385-capable partner from the attack. That doesn't help if the attacker
knows which side of the link is which platform, but it reduces the likelihood
of an unresearched attack being successful.
Mark
More information about the freebsd-security
mailing list