Slashdot Mirror


TCP Vulnerability Published

Bob Slidell writes "According to Yahoo!, there is a critical flaw in TCP that affects everyone and everything. The article is scant on details and long on fear, hopefully someone will post more details on this." The advisory has more information, and is long on details but only moderate on fear.

70 of 676 comments (clear)

  1. Best security advice... by Anonymous Coward · · Score: 4, Funny

    Just unplug your PC from the internet and wash your hands of it.. the whole thing feels holier than swiss cheese :(

    1. Re:Best security advice... by kasperd · · Score: 5, Funny

      Just unplug your PC from the internet

      How would that keep you safe from DoS attacks?

      --

      Do you care about the security of your wireless mouse?
    2. Re:Best security advice... by Anonymous Coward · · Score: 1, Funny

      But you wouldn't be in such a mess if you'd washed your PC regularly like your mother keeps telling you.

    3. Re:Best security advice... by prescot6 · · Score: 3, Funny

      >> Just unplug your PC from the internet

      > umm no connections = No service, therefore sucessful DoS

      - You're fired!
      - Fired?! You can't fire me, I quit!

    4. Re:Best security advice... by Anonymous Coward · · Score: 1, Funny

      There was a BOFH episode that went along the lines of "No service, therefore no denial" where the boss inquires whether there has been any DoS attacks. Simon replies no, and when the boss asked for proof, he cut power to the main accounting server, saying something like "if we experienced a DoS attack, it would look a little like this..." as the phones started ringing off the hook.

      Therefore, if there is no service, you cannot deny service. :)

    5. Re:Best security advice... by nate1138 · · Score: 4, Funny

      Why would anyone put a computer running DOS on the internet in the first place?

      --
      Where's my lobbyist? Right here.
  2. I'm sure this... by darth_MALL · · Score: 3, Funny

    ...will turn out to be nothi* [Carrier Lost]

  3. Good by rokzy · · Score: 4, Funny

    let's all just start again

    TCP2
    SMTP2
    POP32 ...

    1. Re:Good by Anonymous Coward · · Score: 1, Funny

      let's all just start again

      TCP2
      SMTP2
      POP32 ...

      What happened to POP4?

    2. Re:Good by cynical+kane · · Score: 3, Funny

      Better yet, why not leave obsolete technology behind and move to POP64?

      (har har)

  4. That's it! by Anonymous Coward · · Score: 5, Funny

    I'm removing support for TCP right now. Give me UDP or give me death!

    1. Re:That's it! by dasmegabyte · · Score: 4, Funny

      And what's ICMP, chopped liver?

      I want a new internet based on morse code ping responses... 10 ms for a dah.

      --
      Hey freaks: now you're ju
    2. Re:That's it! by openmtl · · Score: 2, Funny
      Sh*t man - screw UDP - I'm going real covert using ICMP. I'll use Perl to chop up streams into ICMP echo with added SHA-2 check-sums.

      THEN I'll know my data got to the other side !.

      --

    3. Re:That's it! by discogravy · · Score: 4, Funny

      i think he meant ICMP when he said "...or give me death".

    4. Re:That's it! by Quixadhal · · Score: 5, Funny

      Connected to Internet

      OSVDB ID: 4030
      Rating: TBD
      Disclosure Date: Apr 20, 2004

      Description:

      The Internet has been determined to be full of evil hax0rz. Any computers connected to the Internet are deemed vulnerable to this exploit.

      Solution:

      Unplug cable, power down WAP, close bomb shelter doors.

    5. Re:That's it! by Rick.C · · Score: 2, Funny
      Give me UDP or give me death!

      Considering the fact that UDP is also the acronymn for Usenet Death Penalty, it doesn't seem like the choices are all that different.

      Freewill? Riiiiiight.
      --
      You were 80% angel, 10% demon. The rest was hard to explain. - Over The Rhine
      "Math in a song is good."-Linford
    6. Re:That's it! by Chris+Mattern · · Score: 2, Funny

      Then he should have said "...or give me TTL 0."

      Chris Mattern

  5. oops? by Tebriel · · Score: 5, Funny

    Looks like someone left ISEXPLOITABLEFLAG = TRUE in the code.

    --
    The Blaster Master Fighting for Truth, Justice, and Evil Pie since 1979
  6. No problem by niom · · Score: 4, Funny

    I'll just switch to UDP.

    --
    -- Repeat with me: "There is no right to profits".
    1. Re:No problem by TheTomcat · · Score: 5, Funny

      more like:
      UDP just I. switch ll'll to I just

      S

  7. FS! by Anonymous Coward · · Score: 0, Funny

    First SYN!!!

  8. Work by somethinghollow · · Score: 5, Funny

    As a web designer, taking advantage of this could get me off work faster than a snow storm. I don't know if I'm afraid or enthused. ;)

  9. Re:OpenBSD is safe? by Anonymous Coward · · Score: 5, Funny

    What about proactive spelling auditing?

  10. The time has come by MrRuslan · · Score: 5, Funny

    to switch over to IPX

    1. Re:The time has come by Anonymous Coward · · Score: 1, Funny

      Oh Jesus, NO! The cure is worse than the disease!

      - Frustrated Novell Admin

  11. Re:OpenBSD is safe? by shatfield · · Score: 5, Funny

    Great, I guess Microsoft will just have to copy the BSD TCP/IP code again to ensure that their customers are safe ;-)

    --
    "To make a mistake is only human; to persist in a mistake is idiotic." Cicero
  12. The Real Question is: by negacao · · Score: 2, Funny

    How can we blame this on Microsoft?

    pssst, hey mods - it's a joke....

  13. Scene from Ghostbusters by airrage · · Score: 1, Funny

    Dr. Peter Venkman: This city is headed for a disaster of biblical proportions.
    Mayor: What do you mean, "biblical?"
    Dr. Raymond Stantz: What he means is Old Testament, Mr. Mayor, real wrath-of-God type stuff. Fire and brimstone coming down from the sky. Rivers and seas boiling.
    Dr. Egon Spengler: Forty years of darkness. Earthquakes, volcanoes...
    Winston Zeddemore: The dead rising from the grave.
    Dr. Peter Venkman: Human sacrifice, dogs and cats living together - mass hysteria.

    --
    "This isn't a study in computer science, its a study in human behavior"
    1. Re:Scene from Ghostbusters by Galapas · · Score: 3, Funny

      Winston Zeddemore: Tell him about the Twinky.

      -G

  14. Thankfully... by Anonymous Coward · · Score: 0, Funny

    ...I'm running AmigaDOS.

  15. Re:OpenBSD is safe? by GoofyBoy · · Score: 4, Funny

    >For what
    they discuss, OpenBSD handles this extremely well. We'll explain more in a week or so.

    Is the margin of the page too small to explain the wonderful reason why it handles this so well?

    --
    The surprise isn't how often we make bad choices; the surprise is how seldom they defeat us.
  16. Warning! by Disconnect · · Score: 5, Funny

    Your computer is broadcasting an IP address!

    Seriously though, it doesn't look all that bad. (Nor does it look all that hard to do, but still..)

    --
    www.gotontheinter.net
    Updated vaguely once a whenever, maybe once a whenever-and-a-half.
  17. I, for one... by Hagakure · · Score: 2, Funny

    I, for one, welcome our new.. uh.. TCP exploiting overlords?

    --


    If this is Heaven I'm bailin out! I cant tolerate this ol tin-tub, so fulla trash and rats...
  18. It's Al Gore's fault... by negacao · · Score: 0, Funny

    After all, he invented the internet, right?

  19. Obviously... by illuminatedwax · · Score: 1, Funny

    This was bound to happen:
    "The operation timed out attempting to connect to www.uniras.gov.uk"

    oh, the irony,
    --Stephen

    --
    Did you ever notice that *nix doesn't even cover Linux?
  20. No problem... by dark-br · · Score: 4, Funny

    i'm posting this over NetBEUI Protocol ;)

    *sight*

  21. Re:More FUD? by MachineShedFred · · Score: 2, Funny

    O.k so how will this affect anyone other than major ISP's that can really do anything about it?

    So I guess it wouldn't affect anyone at all if it a couple backbones that depend on BGP to get packets from point A to point B just dropped off the Internet.

    Nope, that won't affect anyone at all.

    --
    Slashdot still doesnâ(TM)t support Unicode after it was added to the HTML standard in 1997.
  22. Another impending duct tape shortage by tbase · · Score: 1, Funny

    I'm glad I stocked up on duct tape after they told us too. I have plenty to seal off my NICs.

    Apparently terrorist.net's router has already been attacked.

    "Watson, who runs the www.terrorist.net Web site, predicted that hackers will understand how to begin launching attacks 'within five minutes of walking out of that meeting.'"

    He went on to say that you can expect to see the first Spam offering a software patch for $19.95 within 60 seconds of walking out of that meeting.

    --

    666-607: 6th floor apartment of the beast
  23. Oh christ by Hanna's+Goblin+Toys · · Score: 2, Funny

    Spoofed IP addresses? Predictable TCP sequence numbers? Hey, 1998 is calling - they want their security advisory back.

    Oh god, you can spoof a reset into a TCP window. Oh god, some network hardware vendors have large windows and non-pseudorandom TCP sequence number prediction.

    This only becomes a vulnerability when you run an application over TCP that does something catastrophic when it loses a connection. In this case, that would be unsecured BGP (or, if 1998 is calling, unsecured telnet).

    People get paid to write papers about this shit? I need a beer.

  24. Re:OpenBSD is safe? by Anonymous Coward · · Score: 5, Funny

    It doesn't save anything. When someone exploits this and takes out 90% of the Internet's routers, you're screwed no matter what.

    But it saves the day for my network of 3 linux boxen in my basement which are s0 K3wl, they r0x! While the Internet burns to the ground I can route packets back and forth with impunity between my 486 laptop and my Pentium II Server!! WooHoo!

  25. Not a Suprise, given that. . . by Prince+Vegeta+SSJ4 · · Score: 2, Funny
    it's a flaw in TCP

    The TCP (The Clippy Program) has grown beyond your control, soon he will spread through this network as he spread through Windows-sock

    Never use naming conventions that resemble anything as insecure as Windows or Clippy for god's sake

  26. yoda? by DamienMcKenna · · Score: 4, Funny

    Is that you master?

    L. Skywalker

  27. Windows also safe by MrHanky · · Score: 5, Funny
    In a press release from Microsoft, Bill Gates states:
    All Windows versions from 3.11 to 2003 are quite safe from this exploit, since Windows also supports the famously reliable NetBEUI protocol. In a proactive measure, Windows update will remove support for TCP/IP and ensure that all updated computers have support for NetBEUI only. NetBEUI will once again rule the earth! Take that, Steve! No, not you, Ballmer, the other Steve. The hippe. Woahahahahahaha!

    In a quickly following press release, Bill Gates adds:
    Woahahahahahaha! Hahahaha! Hahaha! Thank you.
    1. Re:Windows also safe by MrHanky · · Score: 4, Funny

      Ah, come on! I was joking, not trolling for flames. And besides, how the hell was that going to attract flames? If that really was flamebait, it should be modded -1, ineffective.

      (Was it the hippie part? Yeah, sure calling Steve Jobs a hippie is flamebait, but this was also clearly a joke. Some moderators are just in a dire need of a blow job.)

    2. Re:Windows also safe by markan18 · · Score: 5, Funny

      Security Update for Windows XP (KBTCPDRM-666)

      This update addresses the vulnerability addressed in Microsoft Security Bulletin 666. Find out about more recent critical updates in the Overview section.

      File Name:

      WindowsXP-MSTCPDRM-x86-ENU.exe

      Download Size:

      1261 GB

      Date Published:

      4/20/2004

      Version:

      666

      Overview

      This patch fixes criticals security vulnerabilities present in Windows TCP stack.
      This patch also add the new DRM TCP extension.
      When is patch is applied, your computer will connect to drm.microsoft.com prior establishing any other connection to make sure the requested end point is an authorized Microsoft partner. All rogue packets are now rejected and reported by the Windows TCP-DRM firewall (TM).
      This patch also upload the registry key HKEY_LOCAL_MACHINE and all subkeys and values to drm.microsoft.com so we can make sure all software is used according to their end user licence agreements.

      System Requirements

      Supported Operating Systems: Windows XP

      Windows XP Professional
      Windows XP Home Edition

    3. Re:Windows also safe by Mr.+Neutron · · Score: 2, Funny
      NetBEUI will once again rule the earth!

      HA! Not if Novell has anything to say about it! IPX/SPX 4 EVER!!!!

      Oh, wait, Novell doesn't have anything to say about it.

      --
      dinner: it's what's for beer
    4. Re:Windows also safe by Cruciform · · Score: 5, Funny

      Some moderators are just in a dire need of a blow job.

      Nice of you to volunteer, looks like their outlook has improved already :)

    5. Re:Windows also safe by adamofgreyskull · · Score: 3, Funny

      "Some moderators are just in a dire need of a blow job."

      And that should be modded "-1, Redundant" but you don't hear me compl...oh..shit.

    6. Re:Windows also safe by torpor · · Score: 2, Funny

      To which Steve "The good-looking non-monkey-lovin' one" Jobs whined^H^H^H^H^H^Hreplied:

      "Bite my shiny metal iPlatformWar, Miiis-ter Gaaa-tes..."

      --
      ; -- the corruption of government starts with its secrets. a truly free people keep no secrets. --
  28. SCREECH *BAM* *poof* by MachineShedFred · · Score: 4, Funny

    Wow. That uninterrupted block of text hit so hard it set off my browser's airbag!

    --
    Slashdot still doesnâ(TM)t support Unicode after it was added to the HTML standard in 1997.
  29. Does the affect tcpip/cp? by Craptastic+Weasel · · Score: 5, Funny

    I am a lonely man living on the Galapagos Island. I use TCP/IP over carrier pigeon to communicate with a Nigerian who has promised my great wealth in exchange for securing funds in the First Galapagos Bank, of which I am owner/ceo/clerk, and janitor.

    I suspect someone is interupting my data stream and keeping the replies and account numbers he has been sending me in regards to my money. This vulnerability proves my theory. I am in desperate need!! How can I prevent this!!

    Anyone willing to help I will share my wealth with.

    /obscure humor (Does this make me a Galapagos Spammer?)

  30. Re:OpenBSD is safe? by hatrisc · · Score: 4, Funny

    LONG LIVE THE INTRANET!

    --
    I write code.
  31. Re:OpenBSD is safe? by pyros · · Score: 5, Funny

    I guess they were smart enough to implement the new Evil Bit added to TCP last April. Those OpenBSD folks sure are forward thinking.

  32. The next internet by Anonymous Coward · · Score: 1, Funny

    Can we keep the public off the next Internet?

    They really screwed things up on this one.

  33. Re:Yes yes by Anonymous Coward · · Score: 2, Funny

    Pssst: nobody cares.

  34. Re:NISCC slowing, here is the summary of article by JPriest · · Score: 5, Funny
    BTW, I pasted this here mostly as damage control. I know how some people (and yahoo apparently) like to fly off the handle and claim the world is ending without bothering to even RTFA. You wonder why some people are Afraid to use a computer. If I wrote for the auto industry and intentionally tried to scare the shit out of people Detroit would sue me off the map.

    There is a new vulnerability that will cause every GM vehicle and cause your children to cry. Vandals can place 1 domestic house cat into the fan and cause the fan to stop and under some cases, cause the vehicle to overheat. This was previously written off as house cats are usually soft ans squishy and have little effect on the powerful fan but Joe Shmoe PHD realised that many house cats have colars that are pretty tough for the fan to digest. Car experts say this is a serious problem and will be dealt with in a serious manner. Suggested work around is to keep your cat tied in the house, and to drive a bicycle instead.

    --
    Saying Java is nice because it works on all OS's is like saying that anal sex is nice because it works on all genders.
  35. Re:BGP vulnerable by MyHair · · Score: 4, Funny

    We were embargoed by DHS to not release the information until tomorrow.

    And if anybody could determine the identity of an Anonymous Coward, it certainly wouldn't be an inside group of hardened NOC geeks.

    Oh wait...

    Good info, though. Thanks.

  36. Re:OpenBSD is safe? by rbgaynor · · Score: 4, Funny

    ...in my basement...

    err um, don't you mean your parent's basement :)

    --
    "Good things don't end with eum, they end with mania or teria." - H. Simpson
  37. Re:More from Theo (was Re:OpenBSD is safe?) by c_ollier · · Score: 5, Funny

    For us, those issues are 1/50000 smaller than they are for other vendors.


    So, they are 50,000 times bigger ?


  38. Re:NISCC slowing, here is the summary of article by wideBlueSkies · · Score: 5, Funny

    Besides the fact that their little kitty bones could get into the works and actually stop the fan.

    I'd say this is a real threat. We need to protect our SUV's from the mobs of 1337 haxor kitten terrorists! I propose bombing __insert country here__, under the guise of giving them democracy and freedom, and simultaniously pass some laws at home which take away some of our freedom.

    --
    Huh?
  39. Re:OpenBSD is safe? by Have+Blue · · Score: 3, Funny

    You just wait until the stock market is driven crazy by all those dotlocals with impossible business plans.

  40. Re:NISCC slowing, here is the summary of article by jcenters · · Score: 5, Funny

    Suicide terrorist kitties?

    Al-Kitty?

    Yes, that was corny, and no, I couldn't resist.

    --

    vi ~/.emacs

  41. Article title reads: by SageMadHatter · · Score: 2, Funny

    Internet Technology Vulnerable to Hackers

    This is news?

  42. From the article by SageMadHatter · · Score: 2, Funny

    The risk was similar to Internet users "running naked through the jungle, which didn't matter until somebody released some tigers," said Paul Vixie of the Internet Systems Consortium Inc.

    Was the naked part necessary? I don't know about you, but it would matter to me if there were loose tigers near by, regardless if I was naked or not :)

  43. Re:More from Theo (was Re:OpenBSD is safe?) by Dachannien · · Score: 3, Funny

    >> For us, those issues are 1/50000 smaller than they are for other vendors.

    > So, they are 50,000 times bigger ?

    No, that would be 49999/50000 as big.

  44. Time to go back to NetBUI. by sproketboy · · Score: 2, Funny

    Please. Let's make Bill happy.

  45. Re:NISCC slowing, here is the summary of article by Guppy06 · · Score: 4, Funny

    "Al-Kitty?"

    You're not mangling your Arabic-to-English transilteration enough. It would probably look more like "al Qiddy"

  46. Re:NISCC slowing, here is the summary of article by Anonymous Coward · · Score: 2, Funny

    does anyone else ever want to shoot all of those people who post some ass-hat comment and then say "I couldn't resist' and then tell them I couldn't resist?

  47. Re:NISCC slowing, here is the summary of article by edhall · · Score: 2, Funny

    IANAE

    That would be funny, yes. However, I've been signing posts/email/whatever with "-Ed" for longer than many slashdotters have been alive. I even sign handwritten letters that way. The time to start to worry is if I change it to add a period at the end...

    -Ed
  48. Re:NISCC slowing, here is the summary of article by Red+Pointy+Tail · · Score: 3, Funny

    And putting Al-Kitty through said fan will result in Al-Gore.