Return to BSD News archive
Path: sserve!newshost.anu.edu.au!harbinger.cc.monash.edu.au!msunews!uwm.edu!news.alpha.net!news.mathworks.com!hookup!swrinde!sgiblab!nbn!miwok!news.zeitgeist.net!news.tetherless.net!news.tetherless.net!not-for-mail From: tholo@tetherless.net (Thorsten Lockert) Newsgroups: comp.os.386bsd.bugs Subject: Re: An Official Complaint about FreeBSD Date: 31 Jan 1995 11:50:28 -0800 Organization: Tetherless Access Ltd. Lines: 21 Message-ID: <3gm4a4$g26@gorgor.pa.tetherless.com> References: <3gcr6g$fij@satisfied.elf.com> NNTP-Posting-Host: gorgor.pa.tetherless.com Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit X-Newsreader: NN version 6.5.0 #2 (NOV) In <3gcr6g$fij@satisfied.elf.com> *Hobbit* <hobbit@asylum.sf.ca.us> writes: > >Today I discovered that the FreeBSD kernel, despite being compiled without >GATEWAY, forwards source-routed IP. I'll bet NetBSD does too, but I haven't >checked. Which is completely according to spec. >Guys, we *can* do a little better than Sun in this department, please... There should probably be an option to disable this behavious. But note that doing IP forwarding of source-routed datagrams IS in spec. even if you are not configured as GATEWAY. The security ramifications, however, are something else entirely... Thorsten -- Thorsten Lockert | postmaster@sigmasoft.com | Universe, n.: 1262 Golden Gate Avenue | hostmaster@sigmasoft.com | The problem. San Francisco, CA 94115 | tholo@sigmasoft.com |