I ran nessus against a mdk8 box i built to run as a firewall and I got the following message.. The remote host uses non-random IP IDs, that is, it is possible to predict the next value of the ip_id field of the ip packets sent by this host. An attacker may use this feature to determine if the remote host sent a packet in reply to another request. This may be used for portscanning and other things. Solution : Contact your vendor for a patch Risk factor : Low I din't use kernel-secure-2.2 cause I wanted to learn iptables/ netfilters. Is this a security bug? Is there a patch? Should I be worried? Any kernel-secure 2.4 in the works?
