lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date: Sat, 20 Feb 2010 01:34:39 -0300
From: Fernando Gont <fernando.gont@...il.com>
To: full-disclosure@...ts.grok.org.uk
Cc: bugtraq@...urityfocus.com
Subject: Request for feedback on TCP security (IETF effort)

Hello, folks,

I've just posted a revision of the "Security Assessment of the Transmision
Control Protocol (TCP)" IETF Internet-Draft. It's available at the usual
places (including:
http://tools.ietf.org/id/draft-ietf-tcpm-tcp-security-01.txt). (It is a
derivative of the CPNI TCP-security document published last year, available
at: http://www.cpni.gov.uk/Docs/tn-03-09-security-assessment-TCP.pdf)

The current plan is discuss each section of the draft piecemeal (it is a
very large document), get consensus on the changes to apply to the existing
text, and then move on to the next section.

Therefore I'm requesting feedback on all the sections through Section
3.1.2.3. -- this includes the introduction sections, the basic
check on the TCP segment size (Section 3) and the discussion of port numbers
(Section 3.1 with all its subsections).

Please submit comments by Friday March 5th, 2010, so that we can move on to
the next sections in a timely manner.

P.S.: It would be best if you subscribe the TCP WG mailing-list at:
https://www.ietf.org/mailman/listinfo/tcpm . Nevertheless, you can post your
feeback here (please CC me), or send it unicast to fernando@...t.com.ar , if
you prefer.

Thanks!

Kind regards,
-- 
Fernando Gont
e-mail: fernando@...t.com.ar || fgont@....org
PGP Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF D076 FFF1

Content of type "text/html" skipped

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ