Re: [Full-Disclosure] Attacks based on predictable process IDs??

[Dirk Mueller <dmuell@gmx.net>]

On Thursday 27 November 2003 09:26, Wojciech Purczynski wrote:

> 15 bits of randomness isn't sufficient to prevent guessing its value.

current linux kernels provide more than 15bit pids ( I think its 30 or 
31bits). Not much more, but it makes it slightly more difficult. 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html