Slashdot Mirror

← Back to Stories (view on slashdot.org)

TCP/IP Sequence Number Analysis

Posted by michael on from the you-don't-have-to-be-a-kreskin-to-predict-this dept.

johnwbyrd writes "Upon connection via TCP/IP to a host, the host generates an Initial Sequence Number (ISN). It's important to design ISN generation sequences so remote attackers can't predict an ISN (this is called a "blind spoofing" attack). Using phase space analysis you can check the quality of ISNs generated on various OSes. Windows 98's graph is quite pretty."

2 of 215 comments (clear)

  1. Comment removed by account_deleted · · Score: 1, Troll

    Comment removed based on user account deletion

  2. Re:The BSD's by treat · · Score: 1, Troll
    However, for anyone running a server, it would seem that OpenBSD still is the best choice for anything on the 'net.

    Too bad that an OpenBSD system only exposing ssh to the internet would have been vulnerable to a remote root hole for years now.