From owner-freebsd-mobile@FreeBSD.ORG  Wed Apr 16 11:33:32 2003
Return-Path: <owner-freebsd-mobile@FreeBSD.ORG>
Delivered-To: freebsd-mobile@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 631C337B401
	for <mobile@freebsd.org>; Wed, 16 Apr 2003 11:33:31 -0700 (PDT)
Received: from moo.sysabend.org (moo.sysabend.org [66.111.41.70])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 1872443FB1
	for <mobile@freebsd.org>; Wed, 16 Apr 2003 11:33:31 -0700 (PDT)
	(envelope-from ragnar@sysabend.org)
Received: by moo.sysabend.org (Postfix, from userid 1004)
	id 13471D30; Wed, 16 Apr 2003 11:33:31 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1])
	by moo.sysabend.org (Postfix) with ESMTP
	id 104A5D2E; Wed, 16 Apr 2003 11:33:31 -0700 (PDT)
Date: Wed, 16 Apr 2003 11:33:31 -0700 (PDT)
From: Jamie Bowden <ragnar@sysabend.org>
To: Larry Rosenman <ler@lerctr.org>
In-Reply-To: <290420000.1050516098@lerlaptop.iadfw.net>
Message-ID: <20030416113247.P46401-100000@moo.sysabend.org>
X-representing: Only myself.
X-badge: We don't need no stinking badges.
X-obligatory-profanity: Fuck
X-moo: Moo.
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
cc: mobile@freebsd.org
cc: John Polstra <jdp@polstra.com>
Subject: Re: "broadcast ping" message
X-BeenThere: freebsd-mobile@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Mobile computing with FreeBSD <freebsd-mobile.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-mobile>,
	<mailto:freebsd-mobile-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-mobile>
List-Post: <mailto:freebsd-mobile@freebsd.org>
List-Help: <mailto:freebsd-mobile-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-mobile>,
	<mailto:freebsd-mobile-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 16 Apr 2003 18:33:32 -0000

On Wed, 16 Apr 2003, Larry Rosenman wrote:

> --On Wednesday, April 16, 2003 10:58:20 -0700 John Polstra
> <jdp@polstra.com> wrote:
>
> > In article <20030416105033.H46401-100000@moo.sysabend.org>,
> > Jamie Bowden  <ragnar@sysabend.org> wrote:
> >> On Wed, 16 Apr 2003, John Polstra wrote:
> >>
> >> > To make a FreeBSD system respond to broadcast pings, you have to set
> >> > the sysctl variable net.inet.icmp.bmcastecho to 1.
> >>
> >> Shouldn't the default be to DTRT and respond unless disabled?  Until now,
> >> the only systems on my network that didn't respond to broadcast pings
> >> were my windows boxes, but I consider them broken by default.  Why has
> >> the default behavior changed, and isn't this a POLA issue?
> >
> > It was changed for security reasons.  Responding to broadcast pings
> > creates several potential denial of service attacks.
> It's also against current best practices for ISP's.  Even Cisco changed the
> routers
> to NOT respond to directed-broadcast by default.
>
> The RFC was NOT written for today's internet.

Then submit a draft for a superceding RFC, don't ignore it just because
it's inconvenient.  That's a Microsoft attitude.

Jamie Bowden

-- 
"It was half way to Rivendell when the drugs began to take hold"
Hunter S Tolkien "Fear and Loathing in Barad Dur"
Iain Bowen <alaric@alaric.org.uk>