[Full-disclosure] TCP Hijacking (aka Man-in-the-Middle)
Valdis.Kletnieks at vt.edu
Valdis.Kletnieks at vt.edu
Fri Oct 26 09:58:36 BST 2007
On Fri, 26 Oct 2007 12:41:37 +0400, 3APA3A said:
> So, generally, 1. there is no reason to spoof both connections. 2. it's
Thank you, Captain Obvious - I specifically *said* that only one of them
needs to be blind spoofing.
> only possible if sequence number is 100% (or close to 100%) predictable.
And Michael Zalewski's work showed that even on many boxes that *claim*
to have RFC1948 randomization, you can do pretty well on the predicting.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20071026/f3148615/attachment.bin
Full-Disclosure is hosted and sponsored by Secunia.