Denial of Service in all kernels 2.6.x

Linux has the same problem that other OS:
"Multiple Vendor TCP Timestamp PAWS Remote Denial Of Service
Vulnerability"  published in 2005 by Noritoshi Demizu

If i send a SYN packet with high timestamp legitime user can not
establish a connection with the victim server.

Kernel Tested : 2.6.21.5 , 2.6.11.12

http://www.securityfocus.com/bid/13676/info

Temporal solution: echo "0" > /proc/sys/net/ipv4/tcp_timestamp

Final solution: ???
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Prev by Date: Re: [linux-pm] Re: [PATCH] Remove process freezer from suspend to RAM pathway
Next by Date: Re: [RFC/PATCH] debug workqueue deadlocks with lockdep
Previous by thread: [PATCH] debug work struct cancel deadlocks with lockdep
Next by thread: [RFC] bloody mess with __attribute__() syntax
Index(es):
- Date
- Thread

[Index of Archives] [Kernel Newbies] [Netfilter] [Bugtraq] [Photo] [Stuff] [Gimp] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Video 4 Linux] [Linux for the blind] [Linux Resources]