From owner-freebsd-questions Sun Sep 12 18:10:53 1999 Delivered-To: freebsd-questions@freebsd.org Received: from khavrinen.lcs.mit.edu (khavrinen.lcs.mit.edu [18.24.4.193]) by hub.freebsd.org (Postfix) with ESMTP id 476E514CA3; Sun, 12 Sep 1999 18:10:49 -0700 (PDT) (envelope-from wollman@khavrinen.lcs.mit.edu) Received: (from wollman@localhost) by khavrinen.lcs.mit.edu (8.9.3/8.9.3) id VAA27314; Sun, 12 Sep 1999 21:10:47 -0400 (EDT) (envelope-from wollman) Date: Sun, 12 Sep 1999 21:10:47 -0400 (EDT) From: Garrett Wollman Message-Id: <199909130110.VAA27314@khavrinen.lcs.mit.edu> To: Dag-Erling Smorgrav Cc: nate@mt.sri.com (Nate Williams), Ben Smithurst , "Jeremy L. Ramirez" , dev-null@ns1.digicomsystems.net, freebsd-questions@FreeBSD.ORG, freebsd-security@FreeBSD.ORG Subject: Re: How to prevent motd including os info In-Reply-To: References: <4.2.0.58.19990911151659.00aa8d60@ns1.digicomsystems.net> <19990912012524.B41509@lithium.scientia.demon.co.uk> <199909121534.JAA18584@mt.sri.com> Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG < said: > +tcp_drop_synfin="NO" # Set to YES to drop TCP packets with SYN+FIN > + # NOTE: this breaks rfc1644 extensions (T/TCP) No, it breaks TCP, period, regardless of RFC 1644. Christmas-tree segments are perfectly valid in TCP (i.e., SYN URG PSH FIN). -GAWollman -- Garrett A. Wollman | O Siem / We are all family / O Siem / We're all the same wollman@lcs.mit.edu | O Siem / The fires of freedom Opinions not those of| Dance in the burning flame MIT, LCS, CRS, or NSA| - Susan Aglukark and Chad Irschick To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message