Re: Access on Port 0

To: debian-security@lists.debian.org
Subject: Re: Access on Port 0
From: Toby Speight <streapadair@gmx.net>
Date: 14 Oct 2002 16:37:32 +0100
Message-id: <[🔎] s8y991owub.fsf@suilven.cam.eu.citrix.com>
In-reply-to: <[🔎] 20021012103119.554bd308.alain@onesite.org>
References: <[🔎] 87bs60qugm.fsf@pfaff.Stanford.EDU> <[🔎] E180Bu8-00084Z-00@wabyn.net> <[🔎] 20021012103119.554bd308.alain@onesite.org>

0> In article <[🔎] 20021012103119.554bd308.alain@onesite.org>,
0> Alain Tesio <URL:mailto:alain@onesite.org> ("Alain") wrote:

Alain> Packets on port 0 are invalid and like packets with private
Alain> IPs or bad TCP flags, they can be used for fingerprinting the
Alain> target system.  I don't see any other reason to see a packet
Alain> on port 0.


While RFC 768 appears to reserve *source* port zero to mean "don't
reply to this datagram", I don't see any similar statement for
destination port zero.

/--------[ RFC 768 ]
| Source Port is an optional field, when meaningful, it indicates the port
| of the sending  process,  and may be assumed  to be the port  to which a
| reply should  be addressed  in the absence of any other information.  If
| not used, a value of zero is inserted.
\--------

Reply to:

References:
- Re: Access on Port 0
  - From: Ben Pfaff <blp@cs.stanford.edu>
- Re: Access on Port 0
  - From: Wade Richards <wade@wabyn.net>
- Re: Access on Port 0
  - From: Alain Tesio <alain@onesite.org>

Prev by Date: Re: System Accounts
Next by Date: Re: System Accounts
Previous by thread: Re: Access on Port 0
Next by thread: [OT] named logs
Index(es):
- Date
- Thread