{"id":230,"date":"2004-04-22T15:31:08","date_gmt":"2004-04-22T13:31:08","guid":{"rendered":"http:\/\/vasil.ludost.net\/blog\/?p=230"},"modified":"2004-04-22T15:31:08","modified_gmt":"2004-04-22T13:31:08","slug":"2004-04-22-1531","status":"publish","type":"post","link":"https:\/\/vasil.ludost.net\/blog\/?p=230","title":{"rendered":"2004-04-22 15:31"},"content":{"rendered":"<p>I know, I know, I haven&#8217;t blogged in the last few days, and a lot of people complained :)<\/p>\n<p>To begin, if someone didn&#8217;t hear &#8211; there&#8217;s a big hole in the internet, a great problem, beware, the bad people will eat us all! Some people described the problem, that you can reset a TCP connection, if you&#8217;re able to send a RST or SYN packet, which to fit in the receive window of the connection, something, that&#8217;s known at least since the implementation of the first TCP\/IP stack, and just because a lot of routers use 16 bit receive windows, it takes (theoretically, without thinking, and in the bad implementation) one connection resettable with 2^16 packets, which could led to problems. The thing that everyone talks about is BGP sessions.<br \/>\nSo, for networks, which don&#8217;t have the proper filtering, haven&#8217;t implemented MD5 signing of the packets for the BGP sessions (which could be a bigger problem, that leads to DoS in a lot of Cisco routers), (or just the looking glass shows to everyone the TCP sequence numbers), this is a problem. But a 20 year old problem doesn&#8217;t deserve the damn idiotic attention, i think.<\/p>\n<p>I still haven&#8217;t moved, because there isn&#8217;t a inet connection at the new place, but I&#8217;m working on it, and I hope that the next week I&#8217;ll find a way to do it :)<\/p>\n<p>I&#8217;m working on my lecture for the Linux seminar in Stara Zagora, I already sent a plan to the list, and I think that I&#8217;ll make in into a paper, and I&#8217;ll put it on my site, to give it to other people to read &#8211; the problems that I&#8217;m about to talk about, are really serious, and looks like they&#8217;re not just local for us, judging by<br \/>\n <a href=http:\/\/www.theregister.co.uk\/2004\/04\/22\/it_in_corporate_governance\/> this <\/a> and <a href=http:\/\/www.theregister.co.uk\/2004\/04\/21\/it_professionalism\/> this <\/a> articles in theregister.co.uk. <\/p>\n<p>The Network Security course is going well, today we&#8217;ll be digging deep in some architectures, to see how much we will confuse the students. We&#8217;re thinking about one more course for the next year, as a continuation to NS2, but because it&#8217;s still not sure, I won&#8217;t talk about it (I&#8217;ll just leak that it&#8217;s temporary name in the moment is &#8220;(fighting) cyberterrorism)&#8221;, which in out opinion sound stupid :) ).<\/p>\n<p>My mother is visiting again, and tonight she made the observation (because my machine is in my room, and she&#8217;s sleeping on another bed here), that my keyboard was too noisy&#8230; People don&#8217;t appreciate the IBM Model M&#8230; :)<\/p>\n<p>Only offspring can have a song &#8216;Da Hui&#8217; (translation: hui == penis\/dick\/cock in bulgarian), the lyrics sound really funny to me, you can find them in google :) <\/p>\n","protected":false},"excerpt":{"rendered":"<p>I know, I know, I haven&#8217;t blogged in the last few days, and a lot of people complained :) To begin, if someone didn&#8217;t hear &#8211; there&#8217;s a big hole in the internet, a great problem, beware, the bad people will eat us all! Some people described the problem, that you can reset a TCP [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-230","post","type-post","status-publish","format-standard","hentry","category-general"],"_links":{"self":[{"href":"https:\/\/vasil.ludost.net\/blog\/index.php?rest_route=\/wp\/v2\/posts\/230","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/vasil.ludost.net\/blog\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/vasil.ludost.net\/blog\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/vasil.ludost.net\/blog\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/vasil.ludost.net\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=230"}],"version-history":[{"count":0,"href":"https:\/\/vasil.ludost.net\/blog\/index.php?rest_route=\/wp\/v2\/posts\/230\/revisions"}],"wp:attachment":[{"href":"https:\/\/vasil.ludost.net\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=230"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/vasil.ludost.net\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=230"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/vasil.ludost.net\/blog\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=230"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}