mneumann's projects / dragonfly.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b9665ad) | patch
IPV6 type 0 route headers are a flawed design, insecure by default, and
authorMatthew Dillon <dillon@dragonflybsd.org>
Wed, 25 Apr 2007 21:55:33 +0000 (21:55 +0000)
committerMatthew Dillon <dillon@dragonflybsd.org>
Wed, 25 Apr 2007 21:55:33 +0000 (21:55 +0000)
commit1ba95c1409a8d2073f901bcf160e94dc42314dc6
tree8e93a940b2958b354c2e189003ecf1b395655dc2tree | snapshot
parentb9665ad790386f689b4aaedaf672f5f4125d3e87commit | diff
IPV6 type 0 route headers are a flawed design, insecure by default, and
open hosts and networks up to DOS attacks by allowing normal router IP
filtering to be bypassed.  Disable them by default.

Submitted-by: Hasso Tepper <hasso@estpak.ee>
Obtained-from: OpenBSD
sys/netinet6/in6_proto.c diff | blob | blame | history
sys/netinet6/ip6_var.h diff | blob | blame | history
sys/netinet6/route6.c diff | blob | blame | history
Unnamed repository; edit this file to name it for gitweb.