Hi Fernando+BugTraq
Please see my comments below.
...
Well, I guess this is the point at which an engineering
decision is made. I mean, if one is concerned with traffic
analysis, then make TABLE_LENGTH as large as possible. e.g.,
with only 2KB of memory, you could compartmentalize the port
Hello, Amit,
However, it seems that your proposal only attempts to address one consequence
of
predictable TCP source ports, namely blind TCP attacks (in all fairness, it
appears that the
object of your proposal is to solve the blind TCP attacks, rather than the
issue of predictable
TCP
, but I do believe
that looking at the generic problem here, this should be a factor.
Thanks, and good luck,
-Amit
-Original Message-
From: Fernando Gont [mailto:[EMAIL PROTECTED]
Sent: Friday, December 07, 2007 02:45
To: bugtraq@securityfocus.com
Subject: TCP Port randomization