-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Did you run nessus on woody, or on another distro/platform? I'm unable to get nessus to work right now...
Russell On Friday 19 April 2002 09:02 am, Lars D. Nood�n wrote: > Hi, > > I've upgraded my test of woody (ppc) to the 2.4 kernel on to be able to > use iptables and getting more acquainted with Debian. After the upgrade I > ran nessus against the new set up and found the only two questionable > items[1] > > First was the use of non-random IP IDS: > > The remote host uses non-random IP IDs, that is, it is > possible to predict the next value of the ip_id field of > the ip packets sent by this host. > > Is this something that can be fixed in the distro? Here's the package > info for the kernel: > > ii kernel-image-2 2.4.18-1 Linux kernel binary image. > ii pciutils 2.1.9-4 Linux PCI Utilities (for 2.[1234].x kernels) > > Granted, Nessus gives it low priority, but Kevin Mitnick was quite proud > of being able to exploit this weakness. > > > Second, the remote host answers to ICMP timestamp requests. If > iptables or ipchains comes with a sample filter, then perhaps it could > come with a chain/rule/comment to address this. > > -Lars - -- Linux -- the OS for the Renaissance Man -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE8wCYwAqKGrvVshJQRAvLrAKC2DDlUIaXAy3wZLxCwA0yVbolrjQCggs7j oXx0lpNtAmaxG25QnKKFckk= =Rtye -----END PGP SIGNATURE----- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
