Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Doubt regarding TCP Timestamp response

Hi. I know some forums have been created regarding this issue. I've read many things, nevertheless It's still not very clear to me. A client asked us to give them a recommendation about this vulnerability:

TCP timestamp response

I know this feature can help an attacker to calculate a server's uptime. But, should I recommend them to configure anything in the ASA to mitigate this vulnerability? Clearing TCP timestamps? What's its impact? --> "Clearing the timestamp option disables PAWS and RTT." --> ??

(They have CISCO ASA 9.1(5)10 and CISCO ASA 9.0(1))

Thanks a lot!!

Everyone's tags (1)
2 REPLIES
Cisco Employee

Hi,Check this for more

Hi,

Check this for more information:-

https://supportforums.cisco.com/discussion/12323026/tcp-timestamps-security-vulnerabilities

Thanks and Regards,

Vibhor Amrodia

New Member

Thanks. I've read many things

Thanks. I've read many things about this. I just need a recommendation because I need to find a balance: I can clear timestamps, using tcp-map, but I've read PAWS is going to be disabled, and this might cause many TCP sessions to be reset.

768
Views
4
Helpful
2
Replies
CreatePlease login to create content