|
I just read an interesting paper on IP spoofing. Several systems were tested for their TCP/IP sequence number generators and randomness. It was discovered that insufficiently random TCP/IP sequence numbers result in easy IP spoofing and other attacks (see CERT Advisory CA-2001-09 for more). OS/400 was included in the study and found to be very lacking. Can someone comment on what this means in terms of securing a site? Paper is here: http://lcamtuf.coredump.cx/newtcp/ OS/400 results are here: http://lcamtuf.coredump.cx/newtcp/#os400 James Rich
As an Amazon Associate we earn from qualifying purchases.
This mailing list archive is Copyright 1997-2025 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].
Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.
midrange.com
