Rodrigo Ormonde wrote:
> Not only this. The attacker must discover what inicial sequence number the
> attacked host has chosen to establish the connection. Since this number has 2^32 possible values it's nearly impossible to guess it.
I beg your pardon, but although the *possibilities* are in a range of
by measuring the roundtriptime and sniffing the packets coming from your
"victim" you should be able to guess the sequence number in a
amount of time.
( And yes, I know this is an over simplified explanation :)
Systems & Network programmer, Namsa Luxembourg