From owner-freebsd-security  Wed Aug 19 23:02:52 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id XAA25600
          for freebsd-security-outgoing; Wed, 19 Aug 1998 23:02:52 -0700 (PDT)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from alpha.xerox.com (omega.Xerox.COM [13.1.64.95])
          by hub.freebsd.org (8.8.8/8.8.8) with SMTP id XAA25572;
          Wed, 19 Aug 1998 23:02:47 -0700 (PDT)
          (envelope-from fenner@parc.xerox.com)
Received: from mango.parc.xerox.com ([13.1.102.232]) by alpha.xerox.com with SMTP id <40672(1)>; Wed, 19 Aug 1998 23:02:00 PDT
Received: from mango.parc.xerox.com (localhost [127.0.0.1])
	by mango.parc.xerox.com (8.8.8/8.8.8) with ESMTP id XAA10197;
	Wed, 19 Aug 1998 23:01:58 -0700 (PDT)
	(envelope-from fenner@mango.parc.xerox.com)
Message-Id: <199808200601.XAA10197@mango.parc.xerox.com>
To: ben@rosengart.com
cc: freebsd-security@FreeBSD.ORG, freebsd-bugs@FreeBSD.ORG
Subject: Re: Gateway/firewall denial of service 
In-reply-to: Your message of "Wed, 19 Aug 1998 19:59:02 PDT."
             <Pine.GSO.4.02.9808192257490.26430-100000@echonyc.com> 
Date: Wed, 19 Aug 1998 23:01:57 PDT
From: Bill Fenner <fenner@parc.xerox.com>
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

In message <Pine.GSO.4.02.9808192257490.26430-100000@echonyc.com>you write:
>Why not just ignore replies on interfaces other than the one the request
>was sent on?

This doesn't handle unsolicited replies (which was what the original
situation was about).

>Is connecting to the same segment with more than one
>interface supported, btw?

Not really.

  Bill

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe security" in the body of the message