"Micheal Espinola Jr" wrote: > What would you like references to? TCP sessions are not secure in any > way shape or form. There is no security designed into the technology.
TCP's 3-way handshake may be a small obstacle ;-) (in case of attacker and victim being on separate subnets) "While not the case today, machines in the past used basic techniques for generating sequence numbers. It was relatively easy to discover the exact formula by studying packets and TCP sessions. Today, most OS's implement random sequence number generation, making it difficult to predict them accurately." IP Spoofing: An Introduction http://www.securityfocus.com/infocus/1674 ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Assp-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/assp-user
