Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Bugtraq: Re[2]: A new TCP/IP blind data injection technique?

Re[2]: A new TCP/IP blind data injection technique?

From: Marius Huse Jacobsen <mahuja_at_c2i.net>
Date: Sat, 13 Dec 2003 01:59:56 -0800

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello Valdis,

Thursday, December 11, 2003, 9:06:26 AM, you wrote:

VKve> However, it's a trivial matter to take the original text, the replacement text,
VKve> and compute an original such that the checksum comes out "the same".

Only this is a scenario where we don't have the "original text". If we
had, we could have just ripped out the sequence numbers and skipped
the whole problem.

As long as we don't know anything of the original data we have to
guess the correct checksum.

Still, 1 of 65535 is a lot better than... what is it, 2**64 ?

- --
Best regards,
 Marius mailto:mahuja_at_c2i.net

-----BEGIN PGP SIGNATURE-----

iQA/AwUBP9rjLJfZ2CSWpu1rEQIDnwCeI0wMODSSAJLgob1jSl+IDFw3uWMAoLhM
zR9zJ8TPn/0lOWXgJvBq2lZG
=CvFw
-----END PGP SIGNATURE-----
Received on Dec 13 2003

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]