[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: TOS copying considered harmful

To: henry@spsystems.net, ipsec@lists.tislabs.com
Subject: Re: TOS copying considered harmful
From: ji@research.att.com
Date: Wed, 13 Sep 2000 23:12:19 -0400 (EDT)
Sender: owner-ipsec@lists.tislabs.com

> First, copying TOS is a security leak:  it permits an eavesdropper to

Not more so than keeping the same packet size (rounded up to a multiple
of 8).  To the extent that someone wants to rely on the TOS field, they  
should be able to do so.  ANyone running a tunnel paranoid enough to
be worried about potential TA based on the TOS field will also know enough
to pad packets and blot out the TOS field.

I say leave it alone.

/ji

--
 /\  ASCII ribbon  |  John Ioannidis * Secure Systems Research Department
 \/    campaign    |  AT&T Labs - Research * Florham Park, NJ 07932
 /\    against     |  "Intellectuals trying to out-intellectual
/  \  HTML email.  |   other intellectuals" (Fritz the Cat)

Follow-Ups:

Re: TOS copying considered harmful

From: Henry Spencer <henry@spsystems.net>

Re: TOS copying considered harmful

From: itojun@iijlab.net

Prev by Date: Re: TOS copying considered harmful
Next by Date: Re: TOS copying considered harmful
Prev by thread: Re: TOS copying considered harmful
Next by thread: Re: TOS copying considered harmful
Index(es):
- Main
- Thread