[tor-relays] Lots of tor relays send out sequential IP IDs; please fix that!

Jann Horn jann at thejh.net
Mon Mar 31 23:56:00 UTC 2014


On Mon, Mar 31, 2014 at 02:45:47PM -0800, I wrote:
> How?

How to fix it, you mean? Good question. Probably depends on your OS. If your OS
doesn't let you change it and you can't patch it, I'm afraid you'd have to use
another OS (or a newer version of the one you're using).

https://en.wikipedia.org/wiki/Idle_Scan says:
> The latest versions of Linux, Solaris, OpenBSD, and Windows Vista are not
> suitable as zombie, since the IPID has been implemented with patches[4]
> that randomized the IP ID.[1]
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20140401/2f25d875/attachment.sig>


More information about the tor-relays mailing list