From owner-freebsd-security  Fri Feb 13 15:18:01 1998
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id PAA29725
          for freebsd-security-outgoing; Fri, 13 Feb 1998 15:18:01 -0800 (PST)
          (envelope-from owner-freebsd-security@FreeBSD.ORG)
Received: from burka.rdy.com (dima@burka.rdy.com [205.149.163.30])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id PAA29704
          for <freebsd-security@FreeBSD.ORG>; Fri, 13 Feb 1998 15:17:56 -0800 (PST)
          (envelope-from dima@burka.rdy.com)
Received: by burka.rdy.com id PAA04829;
  (8.8.8/RDY) Fri, 13 Feb 1998 15:17:49 -0800 (PST)
Message-Id: <199802132317.PAA04829@burka.rdy.com>
Subject: Re: LAND revisitied
In-Reply-To: <199802132306.SAA26697@java.coffeehaus.net> from Jonah Kowall at "Feb 13, 98 06:00:40 pm"
To: jkowall@coffeehaus.net (Jonah Kowall)
Date: Fri, 13 Feb 1998 15:17:49 -0800 (PST)
Cc: freebsd-security@FreeBSD.ORG
X-Class: Fast
Organization: HackerDome
Reply-To: dima@best.net
From: dima@best.net (Dima Ruban)
X-Mailer: ELM [version 2.4ME+ PL38 (25)]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk

Jonah Kowall writes:
> I cvsuped my sources and recompiled, and LAND still crashes the machine, is
> there any file I can look in the make sure the patch was indeed installed in
> the tree?

/sys/netinet/tcp_input.c should have the following code:

	/*
	 * Reject attempted self-connects.  XXX This actually masks
	 * a bug elsewhere, since self-connect should work.
	 * However, a urrently-active DoS attack in the Internet
	 * sends a phony self-connect request which causes an infinite
	 * loop.
	 */
	if (ti->ti_src.s_addr == ti->ti_dst.s_addr
	    && ti->ti_sport == ti->ti_dport) {
		tcpstat.tcps_badsyn++;
		goto drop;
	}

> 
> - Jonah Kowall
> 
>  VP Technology
>  Coffeehaus Networks / Content Advisor
>  Somerville, MA
> 
> 
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe security" in the body of the message
> 

-- dima

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe security" in the body of the message