Re: TCP RST attack
At 04:24 PM 20/04/2004, Crist J. Clark wrote:
>Arguments on the severity of the bug aside, FreeBSD does not
>have a working RFC2385 implementation.
Most of it is there
http://www.freebsd.org/cgi/cvsweb.cgi/src/sys/netipsec/ipsec.h
has info about it. bms@freebsd.org is also working on completing the rest.
I have been using his patches against quagga on a directly connected ebgp
peer as well as an ebgp multi-hop peer as well for a good 2 months and it
works as expected.
---Mike
>And despite any particular
>FreeBSD developer's opinion of the severity, there will be some
>FreeBSD consumers who want RFC2385. Anyone working on it or
>already have patches?
>--
>Crist J. Clark | cjclark@alum.mit.edu
> | cjclark@jhu.edu
>http://people.freebsd.org/~cjc/ | cjc@freebsd.org
>_______________________________________________
>freebsd-security@freebsd.org mailing list
>http://lists.freebsd.org/mailman/listinfo/freebsd-security
>To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
討論串 (同標題文章)
完整討論串 (本文為第 15 之 24 篇):