- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
Vulnerability Scanning - TCP timestamp response
[ Edited ]- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-17-2019 11:21 PM - edited 01-17-2019 11:22 PM
Hi All,
I would like to ssek your assistance on the following vunerability:
TCP timestamp response (generic-tcp-timestamp)
Description:
The remote host responded with a TCP timestamp. The TCP timestamp response can be used to approximate the remote host's uptime, potentially aiding in further attacks. Additionally, some operating systems can be fingerprinted based on the behavior of their TCP timestamps.
Is there any documentation or guide to disable the TCP timestamp on Infoblox appliances? Is this the best practise recommended by Infoblox?
Thanks,
Victor
Solved! Go to Solution.
Re: Vulnerability Scanning - TCP timestamp response
[ Edited ]- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-18-2019 12:37 AM - edited 01-18-2019 12:41 AM
I believe the feature to disable TCP timestamps is coming in nios 8.4.
I would a suggest contacting your SE for more info on this feature and the pros and cons to using it.
Re: Vulnerability Scanning - TCP timestamp response
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-18-2019 01:12 AM
This is RFE-1174 for those interested. This feature was included in the NIOS 8.4-EA code so it is pretty safe to say it will be delivered as part of the GA NIOS 8.4.0 release.
Re: Vulnerability Scanning - TCP timestamp response
[ Edited ]- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-19-2019 02:07 AM - last edited on 01-20-2019 05:31 PM by TTiscareno
This is absolutely true that the TCP timestamp response can be used to approximate the remote host's uptime.
<External link removed -Moderator>
Re: Vulnerability Scanning - TCP timestamp response
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-21-2019 07:18 PM
Thanks for the info.