From owner-cvs-all Fri Jun 1 3: 2:35 2001 Delivered-To: cvs-all@freebsd.org Received: from freefall.freebsd.org (freefall.freebsd.org [216.136.204.21]) by hub.freebsd.org (Postfix) with ESMTP id 1044B37B422; Fri, 1 Jun 2001 03:02:30 -0700 (PDT) (envelope-from kris@FreeBSD.org) Received: (from kris@localhost) by freefall.freebsd.org (8.11.1/8.11.1) id f51A2Tf03210; Fri, 1 Jun 2001 03:02:29 -0700 (PDT) (envelope-from kris) Message-Id: <200106011002.f51A2Tf03210@freefall.freebsd.org> From: Kris Kennaway Date: Fri, 1 Jun 2001 03:02:29 -0700 (PDT) To: cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: src/sys/conf files options src/sys/i386/conf NOTES src/sys/netinet ip_id.c ip_input.c ip_mroute.c ip_output.c ip_var.h raw_ip.c src/sys/netinet6 ipsec.c X-FreeBSD-CVS-Branch: HEAD Sender: owner-cvs-all@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG kris 2001/06/01 03:02:29 PDT Modified files: sys/conf files options sys/i386/conf NOTES sys/netinet ip_input.c ip_mroute.c ip_output.c ip_var.h raw_ip.c sys/netinet6 ipsec.c Added files: sys/netinet ip_id.c Log: Add ``options RANDOM_IP_ID'' which randomizes the ID field of IP packets. This closes a minor information leak which allows a remote observer to determine the rate at which the machine is generating packets, since the default behaviour is to increment a counter for each packet sent. Reviewed by: -net Obtained from: OpenBSD Revision Changes Path 1.528 +2 -1 src/sys/conf/files 1.277 +2 -1 src/sys/conf/options 1.921 +8 -1 src/sys/i386/conf/NOTES 1.168 +4 -1 src/sys/netinet/ip_input.c 1.63 +6 -1 src/sys/netinet/ip_mroute.c 1.125 +6 -1 src/sys/netinet/ip_output.c 1.55 +7 -1 src/sys/netinet/ip_var.h 1.77 +6 -1 src/sys/netinet/raw_ip.c 1.11 +5 -1 src/sys/netinet6/ipsec.c To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message