Re: [fw-wiz] A fun smackdown...
From: Ryan McBride (mcbride_at_countersiege.com)
Date: 05/21/05
- Previous message: Chuck Swiger: "Re: [fw-wiz] A fun smackdown..."
- In reply to: Marcus J. Ranum: "Re: [fw-wiz] A fun smackdown..."
- Next in thread: Marcus J. Ranum: "Re: [fw-wiz] A fun smackdown..."
- Reply: Marcus J. Ranum: "Re: [fw-wiz] A fun smackdown..."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: "Marcus J. Ranum" <mjr@ranum.com> Date: Sat, 21 May 2005 20:26:29 +0000
On Sat, May 21, 2005 at 12:58:02PM -0400, Marcus J. Ranum wrote:
> The problem is that, since the standards don't take security into
> account, the traffic is not 'legitimate' - it's 'dangerous' and a
> security device can and SHOULD interfere with it.
>
> Maybe the first time someone invents a PMTUD denial of
> service attack you'll "get it."
Too late.
http://www.gont.com.ar/drafts/icmp-attacks-against-tcp.html
The IETF is ignoring this, of course. Those with a clue (such as
OpenBSD) are not.
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- Previous message: Chuck Swiger: "Re: [fw-wiz] A fun smackdown..."
- In reply to: Marcus J. Ranum: "Re: [fw-wiz] A fun smackdown..."
- Next in thread: Marcus J. Ranum: "Re: [fw-wiz] A fun smackdown..."
- Reply: Marcus J. Ranum: "Re: [fw-wiz] A fun smackdown..."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
