Linux TCP security flaw?