Clock slew vulnerability in FreeBSD?
gnn at freebsd.org
gnn at freebsd.org
Thu Mar 10 20:06:01 PST 2005
At Fri, 11 Mar 2005 03:46:46 +0100,
Anthony Atkielski wrote:
>
>
> How vulnerable is FreeBSD to the recently announced technique for
> individually identifying computers by the clock slew apparent in TCP
> packets? If it is vulnerable to this, will there be any plans to
> address the vulnerability?
>
I gather you mean this paper:
http://www.caida.org/outreach/papers/2005/fingerprinting/
It's an interesting read.
As to how vulnerable FreeBSD is to this I do not know nor do I know if
we should bother to do anything about it. What, in particular are you
worried about here? Also, if you consider this a security issue you
should probably also include the security team in this discussion.
Later,
George
More information about the freebsd-net
mailing list