Firewall-1
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[FW-1] TCP: Treason uncloaked - attacks , smartdefense solutions ?

from Mark Elsen [Permanent Link]
Subject: [FW-1] TCP: Treason uncloaked - attacks , smartdefense solutions ?
From: Mark Elsen <mark.elsen AT GMAIL DOT COM>
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date: Wed, 25 Oct 2006 13:50:22 +0200 
My webserver log is filling up with these :

...
TCP: Treason uncloaked! Peer 64.201.33.162:61377/80 shrinks window
3086856954:3086856955. Repaired.
TCP: Treason uncloaked! Peer 64.201.33.162:61404/80 shrinks window
3117991079:3117991080. Repaired.
TCP: Treason uncloaked! Peer 64.201.33.162:61404/80 shrinks window
3117991079:3117991080. Repaired.
...

Apparently this can be  a kind of attack, to keep sockets in use,
hence exhausting kernel memory.

Does SmartDefense and/or other checkpoint Firewalling components
offer defense and or blocking solutions for this kind of problem (s) ?

M.

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [FW-1] IPSO memory leak, Ray
Next by Date:  Re: [FW-1] IPSO memory leak, Brockhoven, Werner
Previous by Thread:  [FW-1] AW: [FW-1] SBFC Cluster SSL Error, Christoph Dollt
Next by Thread:  Re: [FW-1] TCP: Treason uncloaked - attacks , smartdefense solutions ?, Mark Senior
Indexes:  [Date] [Thread] [Top] [All Lists]