Firewalls: Sequence number attacks

Firewalls
(January 1996)

Indexed By Thread: [Previous] [Next]

Subject:	Sequence number attacks
From:	"A. Padgett Peterson, P.E. Information Security" <PADGETT @ hobbes . orl . mmc . com>
Date:	Thu, 11 Jan 1996 9:10:47 -0500 (EST)
To:	firewalls @ greatcircle . com

Steve rote:
>A couple of months ago, I did come up with a strong but simple defense
>against sequence number attacks.  For details, see
>ftp://ds.internic.net/internet-drafts/draft-rfced-info-bellovin-00.txt

Is easy also to make the first line in your firewall ACL "Deny incoming
<your ip addresses>". Belt and suspenders are good 8*).

						Warmly,
							Padgett

Follow-Ups:

Re: Sequence number attacks
From: Scott Barman <scott @ Disclosure . COM>

Indexed By Date	Previous:	re: "Please reply to Email address and not to the list" From: "A. Padgett Peterson, P.E. Information Security" <PADGETT @ hobbes . orl . mmc . com>
Indexed By Date	Next:	Re: Mitnick & the TCP Sequence Number Attack on Shimomura (LONG posting) From: Doug Hughes <Doug . Hughes @ Eng . Auburn . EDU>
Indexed By Thread	Previous:	Re: "Please reply to Email address and not to the list" From: heuman @ mtnlake . com (R.S. (Bob) Heuman)
Indexed By Thread	Next:	Re: Sequence number attacks From: Scott Barman <scott @ Disclosure . COM>