From owner-freebsd-net@FreeBSD.ORG Mon May 9 03:12:08 2005 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 748B516A4E7 for ; Mon, 9 May 2005 03:12:08 +0000 (GMT) Received: from relay02.pair.com (relay02.pair.com [209.68.5.16]) by mx1.FreeBSD.org (Postfix) with SMTP id CC51E43D70 for ; Mon, 9 May 2005 03:12:07 +0000 (GMT) (envelope-from silby@silby.com) Received: (qmail 2626 invoked from network); 9 May 2005 03:12:06 -0000 Received: from unknown (HELO localhost) (unknown) by unknown with SMTP; 9 May 2005 03:12:06 -0000 X-pair-Authenticated: 209.68.2.70 Date: Sun, 8 May 2005 22:11:54 -0500 (CDT) From: Mike Silbersack To: Suleiman Souhlal In-Reply-To: <52F4D230-9D2D-4D75-93DC-FF54BB902D98@FreeBSD.org> Message-ID: <20050508221054.X10047@odysseus.silby.com> References: <52F4D230-9D2D-4D75-93DC-FF54BB902D98@FreeBSD.org> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed cc: freebsd-net@FreeBSD.org cc: Gandalf The White Subject: Re: FreeBSD and the Rose Attack / NewDawn X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 09 May 2005 03:12:08 -0000 On Sun, 8 May 2005, Suleiman Souhlal wrote: > The patch at http://people.freebsd.org/~ssouhlal/testing/ > ip_reass-20050507.diff does just this. > Could you kindly test it? > > Bye, > -- > Suleiman Souhlal | ssouhlal@vt.edu The concept sounds ok, as long as it doesn't change how fragment reassembly works. We don't want to reassemble fragments in a way other than IDSes would. I'll take a look it this later in the week then. Mike "Silby" Silbersack