Random TCP sequence numbers?

Bas V. de Bakker (bas@phys.uva.nl)
Wed, 27 Sep 1995 15:43:13 +0100


Although I haven't seen it mentioned on this list yet, I happened to
see patch 1.3.30 and was just browsing it. It adds a hardware random
number generator. The comments already mention the obvious
application of using it for TCP initial sequence numbers.

Is this actually going to be used? Are there any disadvantages that
I'm unaware of? I suppose one has to make sure that the numbers are
not too close to previous ones.

At the very least this would give me a nice argument in favor of Linux
to our security paranoid sysadmins. :-)

Bas de Bakker.