cvs commit: src/sys/netinet tcp_output.c tcp_subr.c tcp_var.h
Andre Oppermann
andre at FreeBSD.org
Thu Apr 21 05:37:13 PDT 2005
andre 2005-04-21 12:37:13 UTC
FreeBSD src repository
Modified files:
sys/netinet tcp_output.c tcp_subr.c tcp_var.h
Log:
Ignore ICMP Source Quench messages for TCP sessions. Source Quench is
ineffective, depreciated and can be abused to degrade the performance
of active TCP sessions if spoofed.
Replace a bogus call to tcp_quench() in tcp_output() with the direct
equivalent tcpcb variable assignment.
Security: draft-gont-tcpm-icmp-attacks-03.txt Section 7.1
MFC after: 3 days
Revision Changes Path
1.109 +1 -1 src/sys/netinet/tcp_output.c
1.222 +11 -24 src/sys/netinet/tcp_subr.c
1.120 +0 -2 src/sys/netinet/tcp_var.h
More information about the cvs-all
mailing list