Wireshark · Ethereal-dev: Re: [Ethereal-dev] Detecting TCP Timestamp PAWS DoS from tracefile

Ethereal-dev: Re: [Ethereal-dev] Detecting TCP Timestamp PAWS DoS from tracefile

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: Nathan Jennings <njen@xxxxxxxxxxxx>

Date: Sat, 06 Aug 2005 13:18:54 -0400

Alok wrote:

How does it work on simple SYNs then? :-(

If by "it" you're referring to NIC TCP checksum offloading, then I thinkit's irrelevant what type of TCP packet it is (SYN, FIN, RST, etc.); theTCP pcaket is sent to the OS without a checksum, which is where Etherealgets it from (OS via libpcap). Therefore, you get incorrect checksum,since there's *no* checksum present.


-Nathan

Follow-Ups:
- Re: [Ethereal-dev] Detecting TCP Timestamp PAWS DoS from tracefile
  - From: Alok

References:
- [Ethereal-dev] Detecting TCP Timestamp PAWS DoS from tracefile
  - From: J.Smith
- Re: [Ethereal-dev] Detecting TCP Timestamp PAWS DoS from tracefile
  - From: Alok
- Re: [Ethereal-dev] Detecting TCP Timestamp PAWS DoS from tracefile
  - From: Nathan Jennings
- Re: [Ethereal-dev] Detecting TCP Timestamp PAWS DoS from tracefile
  - From: Alok

Prev by Date: Re: [Ethereal-dev] Detecting TCP Timestamp PAWS DoS from tracefile
Next by Date: Re: [Ethereal-dev] Detecting TCP Timestamp PAWS DoS from tracefile
Previous by thread: Re: [Ethereal-dev] Detecting TCP Timestamp PAWS DoS from tracefile
Next by thread: Re: [Ethereal-dev] Detecting TCP Timestamp PAWS DoS from tracefile
Index(es):
- Date
- Thread