From owner-freebsd-current@FreeBSD.ORG  Tue Feb 22 04:49:33 2005
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
Delivered-To: freebsd-current@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id C136216A4CE
	for <current@freebsd.org>; Tue, 22 Feb 2005 04:49:33 +0000 (GMT)
Received: from outbound0.sv.meer.net (outbound0.sv.meer.net [205.217.152.13])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 2A30243D2F
	for <current@freebsd.org>; Tue, 22 Feb 2005 04:49:33 +0000 (GMT)
	(envelope-from gnn@neville-neil.com)
Received: from mail.meer.net (mail.meer.net [209.157.152.14])
	j1M4nUV1031561;	Mon, 21 Feb 2005 20:49:31 -0800 (PST)
	(envelope-from gnn@neville-neil.com)
Received: from minion.local.neville-neil.com ([210.111.214.11])
	by mail.meer.net (8.12.10/8.12.10/meer) with ESMTP id j1M4nSM8087068;
	Mon, 21 Feb 2005 20:49:29 -0800 (PST)
	(envelope-from gnn@neville-neil.com)
Date: Tue, 22 Feb 2005 13:49:27 +0900
Message-ID: <m2d5utjj1k.wl%gnn@neville-neil.com>
From: gnn@freebsd.org
To: Maxim Konovalov <maxim@macomnet.ru>
In-Reply-To: <20050221233338.B70997@mp2.macomnet.net>
References: <20050123193559.V91742@mp2.macomnet.net>
	<m2vf8mj59c.wl%gnn@neville-neil.com>
	<20050221233338.B70997@mp2.macomnet.net>
User-Agent: Wanderlust/2.12.0 (Your Wildest Dreams) SEMI/1.14.6 (Maruoka)
	FLIM/1.14.6 (Marutamachi) APEL/10.6 Emacs/21.3.50 (powerpc-apple-darwin7.7.0)
	MULE/5.0 (SAKAKI)
MIME-Version: 1.0 (generated by SEMI 1.14.6 - "Maruoka")
Content-Type: text/plain; charset=US-ASCII
cc: current@freebsd.org
Subject: Re: OpenBSD's tcpdrop(8)
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
	<freebsd-current.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 22 Feb 2005 04:49:33 -0000

At Mon, 21 Feb 2005 23:48:55 +0300 (MSK),
Maxim Konovalov wrote:
> Thank you very much for testing!  A version with the correct locking
> (rwatson@) and improved IPv6 (ume@) is already in the tree.
> 

Great.

> We do not allow to modify sysctls in jail by default (!CTLFLAG_PRISON
> case) so I think net.inet.tcp.drop is jail-safe.  And it does not
> allow to discover an existent (or non-existent) tcp connection in the
> host system from the jail.

Sounds good to me.

Later,
George