lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Message-ID: <48bd038b.1c1d640a.5688.3991@mx.google.com>
Date: Tue, 02 Sep 2008 06:06:36 -0300
From: Fernando Gont <fernando.gont@...il.com>
To: coderman <coderman@...il.com>
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: Port Randomization: New revision of our IETF
 Internet-Draft

At 04:50 p.m. 01/09/2008, coderman wrote:

>On Sun, Aug 31, 2008 at 10:44 PM, Fernando Gont 
><fernando.gont@...il.com> wrote:
> > ... IETF Internet-Draft about port randomization...
>
>wget -qO - 
>http://www.gont.com.ar/drafts/port-randomization/draft-ietf-tsvwg-port-randomization-02.txt
>| grep -i grsec
>
>is still empty.  why do you dismiss grsec?

Valdis has already answered your question. That said, the document 
itself is not a survey of what every OS or OS+patch does with respect 
to ephemeral ports, and that little survey we included is not meant 
to be complete (for instance, there's no description of what Windows does).

Also, the base Linux system already implements Algorithm #3. So I 
wonder why anybody would patch the Linux ephemeral port selection 
algorithm.... (unless it is to implement algorithm #4 of our draft).

Regarding me "dismissing" grsec, I tried to (but couldn't) get the 
guy whose e-mail address is available at the grsec web site to review 
one of the documents I have been working on, so that he could provide 
his perspective on each of the issues discussed.

P.S.: The "survey" section must be about 1% of the document. I'd be 
glad to hear comments on the rest of the document.

Kind regards,

--
Fernando Gont
e-mail: fernando@...t.com.ar || fgont@....org
PGP Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF D076 FFF1




_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ