TCP RST attack
Mike Tancsa
mike at sentex.net
Tue Apr 20 16:38:32 PDT 2004
At 04:24 PM 20/04/2004, Crist J. Clark wrote:
>Arguments on the severity of the bug aside, FreeBSD does not
>have a working RFC2385 implementation.
Most of it is there
http://www.freebsd.org/cgi/cvsweb.cgi/src/sys/netipsec/ipsec.h
has info about it. bms at freebsd.org is also working on completing the rest.
I have been using his patches against quagga on a directly connected ebgp
peer as well as an ebgp multi-hop peer as well for a good 2 months and it
works as expected.
---Mike
>And despite any particular
>FreeBSD developer's opinion of the severity, there will be some
>FreeBSD consumers who want RFC2385. Anyone working on it or
>already have patches?
>--
>Crist J. Clark | cjclark at alum.mit.edu
> | cjclark at jhu.edu
>http://people.freebsd.org/~cjc/ | cjc at freebsd.org
>_______________________________________________
>freebsd-security at freebsd.org mailing list
>http://lists.freebsd.org/mailman/listinfo/freebsd-security
>To unsubscribe, send any mail to "freebsd-security-unsubscribe at freebsd.org"
More information about the freebsd-security
mailing list