[GLLUG] TCP stack issue
Richard Houser
rick at divinesymphony.net
Thu Oct 23 23:56:50 EDT 2008
Definitely interesting, but statistically, this should be irrelevant for
anyone on a new BSD or Linux kernel (ex. Mandriva 2009 is a 2.6.27 series
kernel). Typical turnarounds are typically in the hours range for such
things, and most OSS has had fairly comprehensive hardening against TCP
attacks (such as syn flood counter-measures, random sequence ids, etc.).
I'd recommend checking you distro's update repos for a kernel update or
reading the kernel changelogs for more info.
On Tue, Oct 21, 2008 at 1:09 PM, Stanley C. Mortel <mortel at cyber-nos.com>wrote:
> F.Y.I. Interesting for sure.
>
> > --Denial-of-Service Vulnerability Found in TCP Stack
> >(October 2, 2008)
> >Swedish researchers have uncovered flaws in the TCP stack that could be
> >exploited to create denial-of-service conditions. The attack can be
> >carried out in less than five minutes and exploits the way resources
> >are allocated after a successful three-way handshake. The problem
> >was discovered while the researchers were testing a scanning tool.
> >More information about the issue is expected to be presented at the
> >T2'08 Information Security Conference later this month in Helsinki.
> >http://www.securityfocus.com/brief/831
> >
> http://news.cnet.com/8301-1009_3-10056759-83.html?part=rss&subj=news&tag=2547-1009_3-0-20
> >
> http://www.heise-online.co.uk/security/Speculation-surrounds-DoS-vulnerability-in-the-TCP-protocol--/news/111651
>
>
>
> ****************************
> Stan Mortel
> mortel at cyber-nos.com
> ****************************
>
> _______________________________________________
> linux-user mailing list
> linux-user at egr.msu.edu
> http://mailman.egr.msu.edu/mailman/listinfo/linux-user
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.egr.msu.edu/mailman/public/linux-user/attachments/20081023/99049191/attachment.html
More information about the linux-user
mailing list