Interesting BUGTRAQ article on how to bypass some firewalls. Apparently all OSs respond in this manner. See link: http://online.securityfocus.com/archive/1/296122/2002-10-19/2002-10-25/2 <http://online.securityfocus.com/archive/1/296122/2002-10-19/2002-10-25/2> 1. Abstract ----------- There are ambiguities in implementations of the TCP/IP suite for various operating systems. Even if this fact has been used since a long time in different software for OS fingerprinting, no real attempt has been made to identify the security impact of the differences in the TCP/IP semantics. We have done some research on the TCP/IP connection open semantics which is of course very important for security of networked systems. We believe that the flaws we have detected have a big impact on design of firewalls and packet filters since an improper implementation can easily lead to serious security problems. ----------- ___________________________________ Andrew Plato, CISSP President / Principal Consultant Anitian Corporation 503-644-5656 Office 503-644-8574 Fax 503-201-0821 Mobile www.anitian.com <http://www.anitian.com> _______________________________
This archive was generated by hypermail 2b30 : Thu Oct 24 2002 - 11:45:24 PDT