Denial of Service in all kernels 2.6.x

Linux has the same problem that other OS:
"Multiple Vendor TCP Timestamp PAWS Remote Denial Of Service
Vulnerability"  published in 2005 by Noritoshi Demizu

If i send a SYN packet with high timestamp legitime user can not
establish a connection with the victim server.

Kernel Tested : 2.6.21.5 , 2.6.11.12

http://www.securityfocus.com/bid/13676/info

Temporal solution: echo "0" > /proc/sys/net/ipv4/tcp_timestamp

Final solution: ???
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to [email protected]
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

---

• Prev by Date: Re: [linux-pm] Re: [PATCH] Remove process freezer from suspend to RAM pathway
• Next by Date: Re: [RFC/PATCH] debug workqueue deadlocks with lockdep
• Previous by thread: [PATCH] debug work struct cancel deadlocks with lockdep
• Next by thread: [RFC] bloody mess with __attribute__() syntax
• Index(es):
  • Date
  • Thread

[Index of Archives]     [Kernel Newbies]     [Netfilter]     [Bugtraq]     [Photo]     [Stuff]     [Gimp]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Video 4 Linux]     [Linux for the blind]     [Linux Resources]