packets with syn/fin vs pf_norm.c
fooler
fooler at skyinet.net
Wed Jul 6 04:23:51 GMT 2005
----- Original Message -----
From: "Darren Reed" <avalon at caligula.anu.edu.au>
To: "Richard Coleman" <rcoleman at criticalmagic.com>
Cc: <freebsd-security at freebsd.org>; "Garrett Wollman"
<wollman at csail.mit.edu>; "Jesper Wallin" <jesper at www.hackunite.net>; "Darren
Reed" <avalon at caligula.anu.edu.au>; "Dag-Erling Smørgrav" <des at des.no>
Sent: Wednesday, July 06, 2005 11:56 AM
Subject: Re: packets with syn/fin vs pf_norm.c
> In some mail from Richard Coleman, sie said:
> > 1. I thought that T/TCP was being removed from FreeBSD (already
happened?).
> > 2. It's trivial to predict Theo's response to this.
> > 3. Since T/TCP is rare, there is little motivation to alter scrub to
> > function differently than OpenBSD with respect to these packets. If
> > someone really needs this, there are plenty of alternatives.
>
> I didn't know about (1) but I'd agree with (2) and (3).
even if T/TCP was remove, sending SYN + DATA + FIN is still legal...
fooler.
More information about the freebsd-security
mailing list