Re: packets with syn/fin vs pf_norm.c

看板FB_security作者時間20年前 (2005/07/06 12:24), 編輯推噓0(000)
留言0則, 0人參與, 最新討論串10/13 (看更多)
----- Original Message ----- From: "Darren Reed" <avalon@caligula.anu.edu.au> To: "Richard Coleman" <rcoleman@criticalmagic.com> Cc: <freebsd-security@freebsd.org>; "Garrett Wollman" <wollman@csail.mit.edu>; "Jesper Wallin" <jesper@www.hackunite.net>; "Darren Reed" <avalon@caligula.anu.edu.au>; "Dag-Erling Sm鷨grav" <des@des.no> Sent: Wednesday, July 06, 2005 11:56 AM Subject: Re: packets with syn/fin vs pf_norm.c > In some mail from Richard Coleman, sie said: > > 1. I thought that T/TCP was being removed from FreeBSD (already happened?). > > 2. It's trivial to predict Theo's response to this. > > 3. Since T/TCP is rare, there is little motivation to alter scrub to > > function differently than OpenBSD with respect to these packets. If > > someone really needs this, there are plenty of alternatives. > > I didn't know about (1) but I'd agree with (2) and (3). even if T/TCP was remove, sending SYN + DATA + FIN is still legal... fooler. _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
更多 fooler. 的文章
文章代碼(AID): #12orpy00 (FB_security)
討論串 (同標題文章)
完整討論串 (本文為第 10 之 13 篇):
排序: 最新先 | 最舊先 | 留言數
在新視窗開啟完整討論串 (共13篇)
更多 fooler. 的文章
文章代碼(AID): #12orpy00 (FB_security)