LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 04-23-2013, 10:21 AM   #1
5883
Member
 
Registered: Aug 2004
Posts: 170

Rep: Reputation: 0
How to solve TCP sequence number approximation vulnerability issue


Hi,

we use a software tool (rapid7 nexporse) to scan the web server in our linux board, kernel 2.6.39.4.
It says we have TCP sequence number approximation vulnerability issue.

i did search but found nothing so far.
So how to resolve this please ?

Many thanks !
 
Old 04-23-2013, 10:28 AM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,414

Rep: Reputation: 1967Reputation: 1967Reputation: 1967Reputation: 1967Reputation: 1967Reputation: 1967Reputation: 1967Reputation: 1967Reputation: 1967Reputation: 1967Reputation: 1967
well you don't say what distro, but Redhat are happy to NOT fix this... https://access.redhat.com/security/cve/CVE-2004-0230 and Debian also don't care - https://security-tracker.debian.org/.../CVE-2004-0230
 
Old 04-23-2013, 10:39 AM   #3
5883
Member
 
Registered: Aug 2004
Posts: 170

Original Poster
Rep: Reputation: 0
interesting, this is embedded system, we customize root file system ourselves.

Quote:
Originally Posted by acid_kewpie View Post
well you don't say what distro, but Redhat are happy to NOT fix this... https://access.redhat.com/security/cve/CVE-2004-0230 and Debian also don't care - https://security-tracker.debian.org/.../CVE-2004-0230
 
Old 04-23-2013, 10:42 AM   #4
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,414

Rep: Reputation: 1967Reputation: 1967Reputation: 1967Reputation: 1967Reputation: 1967Reputation: 1967Reputation: 1967Reputation: 1967Reputation: 1967Reputation: 1967Reputation: 1967
well if you want to fix an insignificant issue, the kernel source is there waiting for you.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
TCP Sequence Prediction 2late Linux - General 6 02-10-2012 04:23 PM
TCP Sequence Number Approximation Based Denial of Service rafalek *BSD 2 04-25-2010 10:25 AM
TCP: Out of sequence filippo.crea Linux - Networking 12 09-15-2007 08:14 AM
TCP Sequence Prediction introuble Linux - General 4 12-16-2006 03:54 PM
nmap - TCP Sequence Prediction ddaas Linux - Security 2 02-09-2005 03:16 AM


All times are GMT -5. The time now is 01:26 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration