From mboxrd@z Thu Jan  1 00:00:00 1970
From: Michael Atighetchi <matighet@bbn.com>
Subject: Re: CERT Vulnerability Note VU#539363
Date: Mon, 28 Oct 2002 17:25:01 -0500
Sender: netfilter-admin@lists.netfilter.org
Message-ID: <20021028222501.GK26387@bbn.com>
References: <000601c27ece$da3a6ce0$3864a8c0@discmail.com>
Mime-Version: 1.0
Return-path: <netfilter-admin@lists.netfilter.org>
Content-Disposition: inline
In-Reply-To: <000601c27ece$da3a6ce0$3864a8c0@discmail.com>
Errors-To: netfilter-admin@lists.netfilter.org
List-Help: <mailto:netfilter-request@lists.netfilter.org?subject=help>
List-Post: <mailto:netfilter@lists.netfilter.org>
List-Subscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>,
	<mailto:netfilter-request@lists.netfilter.org?subject=subscribe>
List-Id: <netfilter.vger.kernel.org>
List-Unsubscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>,
	<mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe>
List-Archive: <https://lists.netfilter.org/pipermail/netfilter/>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
To: "Aldo S. Lagana" <alagana@discmail.com>
Cc: netfilter@lists.samba.org

TCP SYN cookies might offer some protection against this. It is
implemented in the 2.4 series Linux kernels.

Michael


On Mon, Oct 28, 2002 at 05:10:40PM -0500, Aldo S. Lagana wrote:
> http://www.kb.cert.org/vuls/id/539363
> 
> I haven't seen any reference to this in the list - sorry for the spam if
> it has been discussed - anybody have an idea?
> 
> All the linux vendors listed so far have no response - RedHat and SuSE.
> NetBSD and OpenBSD claim invulnerable.
> 
> 

-- 
matighet@bbn.com   BBN Technologies