RFC 3514: New Bit Defined for IPv4 Headers 270
RFC 3514
was just released, with a new bit definition for use in the headers of IP packets. Because there are important security implications, anyone coding internet services (on either the client or server end) should probably take a look.
It's about time! (Score:5, Funny)
I can see it now. (Score:5, Funny)
you are 2 hours early... (Score:4, Funny)
Darn! You have already thwarted my evil plans yet again.
In other news.... (Score:5, Funny)
Linus has joined redhat.
Slackware is closing down.
Linux now runs on single entangled electrons at MIT
etc etc etc
New Bit (Score:1, Funny)
...and so it begins (Score:5, Funny)
I love April fool's day.
Perl programmers may want to check out their beloved cpan.org [cpan.org] site today, too. :-)
Patch for Cisco IOS needed (Score:5, Funny)
It'll be the Router Admin Full Employment Act of 2003!
Chomping at the bit (Score:5, Funny)
Well... (Score:1, Funny)
the evil one (Score:1, Funny)
100% Correct Spam Filters Now Possible (Score:4, Funny)
Timing problem (Score:3, Funny)
Must remember (Score:4, Funny)
Benign packets have this bit set to 0; those that are used for an attack will have the bit set to 1.
Note to self: Remember to set "evil" bit to 1 when launching world domination attempt.
Why computers crash, by Dr. Seuss (Score:5, Funny)
If your cursor finds a menu item followed by a dash, and the double-clicking icon puts your Window in the trash, and your data is corrupted 'cause the index doesn't hash, then your situation's hopeless and your system's gonna crash!!
If the label on the cable on the table at your house says the network is connected to the button on your mouse, but your packets want to tunnel to another protocol that's repeatedly rejected by the printer down the hall, and your screen is all distorted by the side effects of gauss, so your icons in the window are as wavy as a souse; then you may as well reboot and go out with a bang, 'cuz sure as I'm a poet, the sucker's gonna hang!
When the copy of your floppy's getting sloppy in the disk, and the macro code instructions cause unnecessary risk, then you'll have to flash the memory and you'll want to RAM your ROM. Quick, turn off the computer and be sure to tell your Mom!
Blatently pinched from - Twisted Monkey Entertainment [twistedmonkey.org]
_________________
Cheap Web Site Hosting [cheap-web-...ing.com.au] - recommended by some worker posting on slashdot!
Re:you are 2 hours early... (Score:2, Funny)
The 128-bit strength indicator levels! (Score:4, Funny)
Therefore I, on behalf of the United Corp^H^H^H^H^H States government, submit that the top values should be reserved for the following:
2^127-n
4: Unpatriotic activity.
3: Terrorism. For up to date definition, see www.dhs.gov
2: Attempt to secure personal communication by encryption
1: Circumvention of copy protection mechanisms for purposes of piracy
0: Circumvention of copy protection mechanisms for purposes of "fair use"
Note that the last bit is reserved to indicate whether the packet originates from a foreign country.
I have security. (Score:4, Funny)
The fine print: Aforementioned crimes are only illegal in Afghanistan and include, but are limited to, allowing women to walk around without being entirely concealed under a table cloth, teaching children how to read and write, and singing nursery rhymes.
HTTP link (Score:2, Funny)
Also note that it's actually based on the ideas initially developed by HTCPCP [ietf.org] protocol, which just turned 5 years.
A potential hole... (Score:4, Funny)
The inherent subtlety of this attack is revealed by considering what happens when a security expert attempts to analyze the attack. As soon as he recognizes the evil nature of the attacker, the packets appear to have the 'evil' bit set, and his firewalls start dropping the packets, depriving him of further packets for analysis. The attack is thus even more precisely targeted towards the naive than an attack on Microsoft IIS.
Evil (Score:3, Funny)
Should I start opening the April Fools Day gifts?
Serious question: Will this bit work over Carrier Pigeon?
And one other thought, will Windows2003Server recognize it? Oh...they'll have to release the Service Pack because anything set to 0 won't get through because of a buffer overflow extension illegal operation segfault doo-hickey.
Any other cliches missed?
Oh geez... (Score:5, Funny)
I liked this bit (emphasis mine):
Re:In other news.... (Score:5, Funny)
...BSD is not dying.
If only real life was as simple (Score:2, Funny)
"Sally, cross your legs! His bit is set to 'evil'!"
On second thought...
sex or war (Score:5, Funny)
I propose that instead anything coming from or going to a
*note: Larry Flint. Watch the movie.
**I hereforth trademark this name.
This will never work (Score:4, Funny)
Let's say there's a so-called "cyberterrorist attack" against Windows-architecture systems. Why should Unix-architecture systems treat that "attack" as evil, even if the "evil bit" is set? If it doesn't harm the Unix system, then it must be the equivalent of valid data.
What we really need is more social justice and handouts to resource-needy systems, like those with Windows-architecture. More handshakes wouldn't be bad, either. Thus, we are forced to answer the question: why do they hate us? It is because we are secure, and they are not.
An evil bit is discriminatory. Just because they're evil, is that sufficient justification for sending it to /dev/null? Have a heart, people. Have a heart. Just remember that every evil bit has a parent bit. Allowing "bit profiling" to pervade our systems will mean that the evildoers will have already one.
Re:Must remember (Score:3, Funny)
Which makes me think: Will the cable company terminate my account if I forget to set the evil bit when I am DDoSing someone, as a TOS violation?
Re:First evil comment (Score:4, Funny)
My favorite quote of the RFC is:
" This document defines the behavior of security elements for the 0x0
and 0x1 values of this bit. Behavior for other values of the bit may
be defined only by IETF consensus [RFC2434]."
What a day! (Score:5, Funny)
10.5.4.1 503.1 Slashdotted
The server is currently unable to handle the request due to a fucking slashdotting of the server. Visit slashdot.org for potential mirrors.
Re:4/1/03 (Score:5, Funny)
Well, ya they are predictable, they come every April 1....:)
Perhaps if they just did a few random hoaxes a year, at different times, it would be a little more fun. As it is, its kind of like acting suprised when you get socks for christmas. And just as gratifying.
Hey, I recognize this security scheme! (Score:3, Funny)
Our IT group must have contributed to this RFC! Now I know exactly what to think of it...
Perspiring minds want to know.... (Score:5, Funny)
If we lobby hard enough (Score:3, Funny)
Re:ROFL (Score:4, Funny)
I'm not evil, I swear! (Score:2, Funny)
have we forgotten that evil people often masquerade in sheep's clothing????
stupid!
joshua
What would script-kiddy see in l337? (Score:2, Funny)
Re:Evil (Score:3, Funny)
Usually, it can be detected for by a specially-designed packet sniffer: a freshly-washed car right beneath the carrier pigeons' flight path.
I think a much more pressing ssue would be making carrier pigeons compatable with IPv6. Perhaps if there were two pigeons, and they carried the packet on a string held between them.....
Re:In other news.... (Score:3, Funny)
Linux Kernel 2.6 to include DRM
Slashdot becomes an MSN Featured Site
IBM unveils first 1.0 exabyte ATAPI hard drive
RIAA successfully lobbies for $1 tax on every MP3 file on the net
Here's yer problem... (Score:3, Funny)
Re:Perspiring minds want to know.... (Score:3, Funny)
another joke you probably missed in this (Score:3, Funny)
Re:you are 2 hours early... (Score:3, Funny)
Re:In other news.... (Score:2, Funny)
Don't give him any ideas.
Linux Kernel 2.6 to include DRM
[tinfoil hat]
The way things are going, there might not be much choice. . .
[/tinfoil hat]
Slashdot becomes an MSN Featured Site
With all the MS ads, you mean it isn't already?
IBM unveils first 1.0 exabyte ATAPI hard drive
IBM is out of the hard drive business, you should read
RIAA successfully lobbies for $1 tax on every MP3 file on the net
I am sure they are working on it.
Re:In other news.... (Score:3, Funny)
Re:In other news.... (Score:3, Funny)
Re:ROFL (Score:3, Funny)