On 16/09/14 15:00, Xin Li wrote: > By default RST has to be within the window if the connection is in > ESTABLISHED state. So in order to do that the attacker still need to > guess or know the sequence number.
Thanks, I didn't know that; that must be how a router or MITM attacker is able to do that so easily. Whereas, the attack described in this advisory could work blindly against two remote endpoints. I believe I understand now. Regards, -- Steven Chamberlain [email protected] _______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "[email protected]"
