headers
Don Marti | 18 Jul 19:12

Obfuscated TCP

Anyone following the "Obfuscated TCP" kernel patch
set and userspace library?
  http://code.google.com/p/obstcp/
Fast opportunistic crypto at the TCP level.

Looks like a useful way to make it difficult for
ISPs to use services such as Phorm and NebuAd to
collect user tracking data and ad revenue -- so
webmasters should be all over it.  And, of course,
it's protection against forged RST attacks.

Doesn't work if the attacker is willing to spend
more and do an MITM attack, though.

--

-- 
Don Marti                                               +1 415-734-7913 mobile
http://zgp.org/~dmarti/
dmarti <at> zgp.org         Linux device driver unconference: http://freedomhec.org/
Permalink | Reply |
headers
Tony Godshall | 19 Jul 02:04

Re: Obfuscated TCP

Very cool.

Thanks for posting this.

On Fri, Jul 18, 2008 at 10:16 AM, Don Marti <dmarti <at> zgp.org> wrote:
> Anyone following the "Obfuscated TCP" kernel patch
> set and userspace library?
>  http://code.google.com/p/obstcp/
> Fast opportunistic crypto at the TCP level.
>
> Looks like a useful way to make it difficult for
> ISPs to use services such as Phorm and NebuAd to
> collect user tracking data and ad revenue -- so
> webmasters should be all over it.  And, of course,
> it's protection against forged RST attacks.
>
> Doesn't work if the attacker is willing to spend
> more and do an MITM attack, though.
>
> --
> Don Marti                                               +1 415-734-7913 mobile
> http://zgp.org/~dmarti/
> dmarti <at> zgp.org         Linux device driver unconference: http://freedomhec.org/
> _______________________________________________
> linux-elitists mailing list
> linux-elitists <at> zgp.org
> http://allium.zgp.org/cgi-bin/mailman/listinfo/linux-elitists
>

--

--
(Continue reading)

Permalink | Reply |

Gmane