From owner-freebsd-security  Thu Mar 27 13:56:19 1997
Return-Path: <owner-security>
Received: (from root@localhost)
          by freefall.freebsd.org (8.8.5/8.8.5) id NAA26884
          for security-outgoing; Thu, 27 Mar 1997 13:56:19 -0800 (PST)
Received: from alpha.xerox.com (alpha.Xerox.COM [13.1.64.93])
          by freefall.freebsd.org (8.8.5/8.8.5) with SMTP id NAA26865
          for <freebsd-security@freebsd.org>; Thu, 27 Mar 1997 13:56:12 -0800 (PST)
Received: from crevenia.parc.xerox.com ([13.2.116.11]) by alpha.xerox.com with SMTP id <16005(3)>; Thu, 27 Mar 1997 13:55:39 PST
Received: by crevenia.parc.xerox.com id <177486>; Thu, 27 Mar 1997 13:55:35 -0800
From: Bill Fenner <fenner@parc.xerox.com>
To: fenner@parc.xerox.com, tqbf@enteract.com
Subject: Re: More netinet suser() stuff...
Cc: freebsd-security@freebsd.org
Message-Id: <97Mar27.135535pst.177486@crevenia.parc.xerox.com>
Date: Thu, 27 Mar 1997 13:55:33 PST
Sender: owner-security@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

>> Note that traceroute still uses an IPPROTO_RAW socket to send packets,
>
>Only if it can't look up "icmp" in /etc/protocols, at least in version
>1.3.2

Check again.  s is an IPPROTO_ICMP socket, sndsock is an IPPROTO_RAW
socket.  If it fails to look up "icmp" in /etc/protocols, then it
opens no sockets at all.

  Bill