"I think you need to be able to stop one side sending out ACK checks so you can anticipate the packet sequence numbers reliably."
"Aren't the other operating systems effectively even weaker against this because they haven't implemented RFC5961 at all?"
Something I'm not completely clear about after reading a few of these:
Does it only take one Linux computer (in the session) to push this exploit, or do both sides of the communication have to be Linux?
Biting the hand that feeds IT
