From owner-cvs-all@FreeBSD.ORG Tue Feb 22 08:20:57 2005 Return-Path: Delivered-To: cvs-all@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3758116A4D0 for ; Tue, 22 Feb 2005 08:20:57 +0000 (GMT) Received: from relay03.pair.com (relay03.pair.com [209.68.5.17]) by mx1.FreeBSD.org (Postfix) with SMTP id 6310443D49 for ; Tue, 22 Feb 2005 08:20:56 +0000 (GMT) (envelope-from silby@silby.com) Received: (qmail 38439 invoked from network); 22 Feb 2005 08:20:55 -0000 Received: from unknown (HELO localhost) (unknown) by unknown with SMTP; 22 Feb 2005 08:20:55 -0000 X-pair-Authenticated: 209.68.2.70 Date: Tue, 22 Feb 2005 02:20:40 -0600 (CST) From: Mike Silbersack To: Gleb Smirnoff In-Reply-To: <200502220803.j1M839fn013604@repoman.freebsd.org> Message-ID: <20050222021322.U702@odysseus.silby.com> References: <200502220803.j1M839fn013604@repoman.freebsd.org> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed cc: cvs-src@FreeBSD.org cc: src-committers@FreeBSD.org cc: cvs-all@FreeBSD.org Subject: Re: cvs commit: src/etc syslog.conf X-BeenThere: cvs-all@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: CVS commit messages for the entire tree List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 22 Feb 2005 08:20:57 -0000 On Tue, 22 Feb 2005, Gleb Smirnoff wrote: > Security: this change fixes a DoS condition, when default system > console is serial, and box is flooded with bogus ARP > packets Go rate-limit those messages, like we do with other kernel messages. grep for "ppsratecheck" in /usr/src/sys/kern to see the other users of that function. If losing information about the flood is an issue, you could use ppsratecheck to ensure that a generic "arp flood" message goes to the console, but the actual messages are sent with a lower priority. Mike "Silby" Silbersack