Date: Mon, 2 Jun 1997 19:24:55 -0400 (EDT) From: Garrett Wollman <wollman@khavrinen.lcs.mit.edu> To: Darren Reed <darrenr@cyber.com.au> Cc: security@FreeBSD.ORG Subject: Re: TCP RST Handling in 2.2 (fwd) Message-ID: <199706022324.TAA25329@khavrinen.lcs.mit.edu> In-Reply-To: <199706022238.IAA29632@plum.cyber.com.au> References: <199706022238.IAA29632@plum.cyber.com.au>
next in thread | previous in thread | raw e-mail | index | archive | help
<<On Tue, 3 Jun 1997 08:38:23 +1000 (EST), Darren Reed <darrenr@cyber.com.au> said: > Currently, not even the SEQ number is verified (for an RST packet) - i.e. > that the ACK does acknowledge the SYN. > I think there is room for improvement in the code. Comments ? Certainly. It might also be worth implementing the three-way RST handshake which has been proposed by some to fill some theoretical gaps in TCP's handling of resets which could (very rarely) result in innocent connections getting reset. I don't propose to do either myself, however, although I'm happy to look at anyone else's attempt to do so. -GAWollman -- Garrett A. Wollman | O Siem / We are all family / O Siem / We're all the same wollman@lcs.mit.edu | O Siem / The fires of freedom Opinions not those of| Dance in the burning flame MIT, LCS, CRS, or NSA| - Susan Aglukark and Chad Irschick
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199706022324.TAA25329>