Date: Thu, 27 Mar 1997 16:11:21 -0600 (CST) From: "Thomas H. Ptacek" <tqbf@enteract.com> To: fenner@parc.xerox.com (Bill Fenner) Cc: fenner@parc.xerox.com, tqbf@enteract.com, freebsd-security@freebsd.org Subject: Re: More netinet suser() stuff... Message-ID: <199703272211.QAA17602@enteract.com> In-Reply-To: <97Mar27.135535pst.177486@crevenia.parc.xerox.com> from "Bill Fenner" at Mar 27, 97 01:55:33 pm
next in thread | previous in thread | raw e-mail | index | archive | help
> Check again. s is an IPPROTO_ICMP socket, sndsock is an IPPROTO_RAW > socket. If it fails to look up "icmp" in /etc/protocols, then it > opens no sockets at all. You're obviously right. Sorry about the confusion. Without any modifications to my kernel, traceroute continues to work using the same socket for sending and receiving (sndsock = s). I'll try returning EACCESS in the raw IP code for !IPPROTO_RAW and see if that breaks traceroute now. ---------------- Thomas Ptacek at EnterAct, L.L.C., Chicago, IL [tqbf@enteract.com] ---------------- "If you're so special, why aren't you dead?"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199703272211.QAA17602>