[pfSense Support] any comment or need to worry about the recent TCP/IP DoS found by Outpost24?

I've read a lot about how windows and linux are vulnerable, but not much info regarding FreeBSD. Does anyone know how worried we should be? Any comment on possible corrective measures being implemented by the dev team? - To

Re: [pfSense Support] any comment or need to worry about the recent TCP/IP DoS found by Outpost24?

Yes, according to Robert Lee all versions of BSD including freebsd are affected. And they say going to ipv6 makes it even more vulnerable. -Phil G On Oct 3, 2008, at 9:57 AM, Vivek Khera [EMAIL PROTECTED] wrote: I've read a lot about how windows and linux are vulnerable, but not much

Re: [pfSense Support] any comment or need to worry about the recent TCP/IP DoS found by Outpost24?

And how could the dev team implement a fix if we don't know the specifics of the exploit? This will be something that the freebsd dev team will need to fix and I'm sure they will asap. -Phil G On Oct 3, 2008, at 9:57 AM, Vivek Khera [EMAIL PROTECTED] wrote: I've read a lot about how

Re: [pfSense Support] any comment or need to worry about the recent TCP/IP DoS found by Outpost24?

Vivek Khera schrieb: I've read a lot about how windows and linux are vulnerable, but not much info regarding FreeBSD. Does anyone know how worried we should be? Any comment on possible corrective measures being implemented by the dev team? AFAIK, the details are not really public at

Re: [pfSense Support] any comment or need to worry about the recent TCP/IP DoS found by Outpost24?

and Robert Lee's response to that: In regards to Fyodor's articlehttp://insecure.org/stf/tcp-dos-attack-explained.html : There are some really valid points made; While his article does describe some of how sockstress works and why it is efficient, it does not describe our attacks. Jack would

Re: [pfSense Support] any comment or need to worry about the recent TCP/IP DoS found by Outpost24?

On Fri, Oct 3, 2008 at 11:06 AM, BSD Wiz [EMAIL PROTECTED] wrote: And how could the dev team implement a fix if we don't know the specifics of the exploit? This will be something that the freebsd dev team will need to fix and I'm sure they will asap. So, I need to know everything you know or

Re: [pfSense Support] any comment or need to worry about the recent TCP/IP DoS found by Outpost24?

Sorry, didn't mean to come off like an a-hole. -Phil G On Oct 3, 2008, at 10:43 AM, Vivek Khera [EMAIL PROTECTED] wrote: On Fri, Oct 3, 2008 at 11:06 AM, BSD Wiz [EMAIL PROTECTED] wrote: And how could the dev team implement a fix if we don't know the specifics of the exploit? This will

Re: [pfSense Support] any comment or need to worry about the recent TCP/IP DoS found by Outpost24?

On Fri, Oct 3, 2008 at 10:57 AM, Vivek Khera [EMAIL PROTECTED] wrote: I've read a lot about how windows and linux are vulnerable, but not much info regarding FreeBSD. Does anyone know how worried we should be? Any comment on possible corrective measures being implemented by the dev team?

Re: [pfSense Support] any comment or need to worry about the recent TCP/IP DoS found by Outpost24?

On Fri, Oct 3, 2008 at 3:02 PM, Chris Buechler [EMAIL PROTECTED] wrote: We had a discussion on it on our private developer list a couple days ago, end result is there isn't anything we can do without knowing more, and even at that nothing we can do until FreeBSD fixes it if it is a problem.