kern/57760: IPsec policy on inbound trafic is not enforced(allows
spoofing)
Joachim Schueth
spam_vanishes_here at yahoo.de
Sat Apr 10 01:20:23 PDT 2004
The following reply was made to PR kern/57760; it has been noted by GNATS.
From: Joachim Schueth <spam_vanishes_here at yahoo.de>
To: freebsd-gnats-submit at FreeBSD.org, dl2kcd at darc.de
Cc:
Subject: Re: kern/57760: IPsec policy on inbound trafic is not enforced (allows
spoofing)
Date: Sat, 10 Apr 2004 10:09:53 +0200
I did some further testing. The results are:
- The problem still persists in FreeBSD-4.9-RELEASE-p4.
- The problem does NOT occur when IPv6 support is included.
To reproduce the problem, you have to comment out or remove
the line "options INET6" in the kernel config.
Joachim Schueth
More information about the freebsd-bugs
mailing list