Date: Fri, 21 Nov 1997 15:07:35 PST From: Bill Fenner <fenner@parc.xerox.com> To: Jim Shankland <jas@flyingfox.com> Cc: Don.Lewis@tsc.tdk.com, security@freebsd.org Subject: Re: new TCP/IP bug in win95 (fwd) Message-ID: <97Nov21.150748pst.177476@crevenia.parc.xerox.com> In-Reply-To: Your message of "Fri, 21 Nov 97 09:11:25 PST." <199711211711.JAA04036@biggusdiskus.flyingfox.com>
index | next in thread | previous in thread | raw e-mail
Jim Shankland <jas@flyingfox.com> wrote: >I can't think of any case in which it would >be legal or desirable to have a TCP connection with (src-ip, src-port) >equal to (dst-ip, dst-port) It's legal. >so why not just reject such a connection >attempt out of hand in the TCPS_LISTEN state? For one thing, src-ip == dst-ip is not the only situation that will cause this behavior on a multi-homed host; determining if this is an evil packet takes a routing table lookup or an interface table search. It may also be that there's a whole class of problems that this bug is only one symptom of, and finding the right fix rather than the right-now fix could be important in the future. Billhelp
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?97Nov21.150748pst.177476>