| 1 |
All: |
| 2 |
|
| 3 |
Mirror of "NISCC Vulnerability Advisory 236929" (Please don't abuse): |
| 4 |
<http://www.noved.org/~devon/www.uniras.gov.uk/vuls/2004/236929/> |
| 5 |
|
| 6 |
I think they focused on BGP because bringing down BGP connections would |
| 7 |
cause route damping and take networks offline and cause outages for a |
| 8 |
larger portion of people versus sending a RST for someone's large FTP |
| 9 |
download. :) Unless my understanding is wrong, this would affect *any* |
| 10 |
established TCP connection that is open for a period of time. |
| 11 |
|
| 12 |
Does anyone have any information about the Linux kernel? I checked the |
| 13 |
linux-kernel ML at MARC, but I didn't see anything about it. I saw |
| 14 |
something from Theo on the OpenBSD mailing list that OpenBSD had some |
| 15 |
protection already. I saw some discussion on the FreeBSD mailing lists |
| 16 |
and the Debian mailing lists also. |
| 17 |
|
| 18 |
Devon |
| 19 |
|
| 20 |
on 4/20/2004 4:21 PM Chris McCracken said the following: |
| 21 |
|
| 22 |
> It looks like the CERT Advisory is mainly focused on BGP. I must admit |
| 23 |
> I'm not all that well versed on TCP/IP internals anymore. Is this |
| 24 |
> mainly a transport provider problem (those running BGP), or does it |
| 25 |
> affect end systems as well? Obviously this is a major issue, and it |
| 26 |
> will be interesting to see how it pans out in the next few days. The |
| 27 |
> recommendations from CERT don't look to be simple "patch" solutions to |
| 28 |
> the problem. Thoughts? |
| 29 |
> |
| 30 |
> ~Chris |
| 31 |
> |
| 32 |
> vorlon wrote: |
| 33 |
> |
| 34 |
>> Hi, |
| 35 |
>> |
| 36 |
>> On 20.04.2004 21:47, Gard Spreemann wrote: |
| 37 |
>> |
| 38 |
>> > What's the status on this? Anybody heard anything much? The UK govt. |
| 39 |
>> site |
| 40 |
>> > seems to be slashdotted, so I'll have to use the Slashdot story: |
| 41 |
>> > |
| 42 |
>> http://slashdot.org/article.pl?sid=04/04/20/1738217&mode=thread&tid=126&tid=128&tid=172&tid=95 |
| 43 |
>> |
| 44 |
>> |
| 45 |
>> US-CERT just published this: |
| 46 |
>> <http://www.us-cert.gov/cas/techalerts/TA04-111A.html> |
| 47 |
>> ("Technical Cyber Security Alert TA04-111A - Vulnerabilities in TCP") |
| 48 |
>> |
| 49 |
>> which has a few more links too. |
| 50 |
>> |
| 51 |
>> Matthias |
| 52 |
>> |
| 53 |
>> |
| 54 |
>> |
| 55 |
>> -- |
| 56 |
>> gentoo-security@g.o mailing list |
| 57 |
>> |
| 58 |
> |
| 59 |
> |
| 60 |
> -- |
| 61 |
> gentoo-security@g.o mailing list |
| 62 |
> |
| 63 |
|
| 64 |
|
| 65 |
-- |
| 66 |
gentoo-security@g.o mailing list |
Archives