Skip site navigation (1)Skip section navigation (2)
Date:      Mon, 2 Jun 1997 23:24:15 -0400 (EDT)
From:      Adam Shostack <adam@homeport.org>
To:        wollman@khavrinen.lcs.mit.edu (Garrett Wollman)
Cc:        darrenr@cyber.com.au, security@FreeBSD.ORG
Subject:   Re: TCP RST Handling in 2.2 (fwd)
Message-ID:  <199706030324.XAA20211@homeport.org>
In-Reply-To: <199706022324.TAA25329@khavrinen.lcs.mit.edu> from Garrett Wollman at "Jun 2, 97 07:24:55 pm"

next in thread | previous in thread | raw e-mail | index | archive | help

Garrett Wollman wrote:
| <<On Tue, 3 Jun 1997 08:38:23 +1000 (EST), Darren Reed <darrenr@cyber.com.au> said:
| 
| > Currently, not even the SEQ number is verified (for an RST packet) - i.e.
| > that the ACK does acknowledge the SYN.
| 
| > I think there is room for improvement in the code.  Comments ?
| 
| Certainly.  It might also be worth implementing the three-way RST
| handshake which has been proposed by some to fill some theoretical
| gaps in TCP's handling of resets which could (very rarely) result in
| innocent connections getting reset.

	I'd strongly recommend against implementing a non standard
TCP mod as anything but an option for those who want to play with it.
Please don't put it in the base code.

-- 
"It is seldom that liberty of any kind is lost all at once."
					               -Hume





Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199706030324.XAA20211>