Date: Tue, 07 Jul 1998 12:20:49 -0700 From: David Greenman <dg@root.com> To: rotel@indigo.ie Cc: Samuel S Thomas <sthomas@lart.net>, Poul-Henning Kamp <phk@critter.freebsd.dk>, freebsd-bugs@FreeBSD.ORG Subject: Re: kern/7191: FreeBSD 2.2.6 generates Source-route prohibited when not routing Message-ID: <199807071920.MAA01531@implode.root.com> In-Reply-To: Your message of "Tue, 07 Jul 1998 19:55:33 -0000." <199807071855.TAA03556@indigo.ie>
next in thread | previous in thread | raw e-mail | index | archive | help
>Does this patch mean that if a machine receives a source routed >packet which is destined for it then it will be silently dropped >if source routing is disabled? No, that is handled by code before this which sends the appropriate ICMP message to the peer. >Shouldn't we log such occurences? I actually think logging stuff like this on a host is a waste since legitimate utilities like traceroute can generate LSR packets. Logging this actually makes one vulnerable to syslogd attacks by simply sending a flood of LSR packets to the host. If people really want to log these sorts of failures then they should configure their firewall appropriately. -DG David Greenman Co-founder/Principal Architect, The FreeBSD Project To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199807071920.MAA01531>