From owner-freebsd-security Mon Jun 2 17:39:00 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.5/8.8.5) id RAA23184 for security-outgoing; Mon, 2 Jun 1997 17:39:00 -0700 (PDT) Received: from genesis.atrad.adelaide.edu.au (genesis.atrad.adelaide.edu.au [129.127.96.120]) by hub.freebsd.org (8.8.5/8.8.5) with ESMTP id RAA23177 for ; Mon, 2 Jun 1997 17:38:55 -0700 (PDT) Received: (from msmith@localhost) by genesis.atrad.adelaide.edu.au (8.8.5/8.7.3) id KAA27794; Tue, 3 Jun 1997 10:08:49 +0930 (CST) From: Michael Smith Message-Id: <199706030038.KAA27794@genesis.atrad.adelaide.edu.au> Subject: Re: TCP RST Handling in 2.2 (fwd) In-Reply-To: <199706022238.IAA29632@plum.cyber.com.au> from Darren Reed at "Jun 3, 97 08:38:23 am" To: darrenr@cyber.com.au (Darren Reed) Date: Tue, 3 Jun 1997 10:08:48 +0930 (CST) Cc: security@FreeBSD.ORG X-Mailer: ELM [version 2.4ME+ PL28 (25)] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-security@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk Darren Reed stands accused of saying: > > Darren > > p.s. I've brought this up because of people's experience with IP Filter > which currently won't allow any TCP packets through if they are > outside either window (when "keep state" is used). A case has been > presented where the RST being sent back has a 0 ACK field by a > non-zero SEQ field. Speaking of ipfilter, I was trying to help someone build it on a 2.2 box last night. Have you tested it there recently? Where do you define ACTUALLY_LKM_NOT_KERNEL in your LKM source before including ? (TBH, we both wanted to use ipfilter because they have a mix of NetBSD/FreeBSD/Solaris systems and your code runs on all of them, but, well, there's this little problem 8) -- ]] Mike Smith, Software Engineer msmith@gsoft.com.au [[ ]] Genesis Software genesis@gsoft.com.au [[ ]] High-speed data acquisition and (GSM mobile) 0411-222-496 [[ ]] realtime instrument control. (ph) +61-8-8267-3493 [[ ]] Unix hardware collector. "Where are your PEZ?" The Tick [[