From owner-freebsd-hackers Thu Aug 9 9:45:21 2001 Delivered-To: freebsd-hackers@freebsd.org Received: from mail-green.research.att.com (H-135-207-30-103.research.att.com [135.207.30.103]) by hub.freebsd.org (Postfix) with ESMTP id E0F3337B401; Thu, 9 Aug 2001 09:45:16 -0700 (PDT) (envelope-from fenner@research.att.com) Received: from alliance.research.att.com (alliance.research.att.com [135.207.26.26]) by mail-green.research.att.com (Postfix) with ESMTP id 4F5671E030; Thu, 9 Aug 2001 12:45:16 -0400 (EDT) Received: from windsor.research.att.com (windsor.research.att.com [135.207.26.46]) by alliance.research.att.com (8.8.7/8.8.7) with ESMTP id MAA00088; Thu, 9 Aug 2001 12:45:15 -0400 (EDT) From: Bill Fenner Received: (from fenner@localhost) by windsor.research.att.com (8.8.8+Sun/8.8.5) id JAA03207; Thu, 9 Aug 2001 09:45:15 -0700 (PDT) Message-Id: <200108091645.JAA03207@windsor.research.att.com> MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII To: jon@freebsd.org Subject: Re: forwarding broadcast Cc: net@freebsd.org, hackers@freebsd.org Date: Thu, 9 Aug 2001 09:45:14 -0700 Versions: dmail (solaris) 2.2j/makemail 2.9b Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG >On FreeBSD -CURRENT and -STABLE, packets to broadcast addresses are not >forwarded. "smurf" attacks love using broadcast forwarders. RFC 2644 says: > A router MAY have an option to enable receiving network-prefix- > directed broadcasts on an interface and MAY have an option to > enable forwarding network-prefix-directed broadcasts. These > options MUST default to blocking receipt and blocking forwarding > of network-prefix-directed broadcasts. So, your patch just adds the mentioned option -- which I'm fine with, as long as the default is 0 as the RFC requires... Bill To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message