Re: fetch http://localhost:6666 hangs
- From: Mikhail Teterin <mi+mx@xxxxxxxxxxxxxxxxx>
- Date: Tue, 27 Jun 2006 16:10:04 -0400
вівторок 27 червень 2006 15:05, Pawel Worach написав:
I just noticed, that on my recent "6.1-STABLE #4: Thu Jun 8" amd64
system attempts to connect to a bogus port (like 6666) hang instead of
failing with "Connection refused" immediately, as they on other systems.
Using sysctl net.inet.tcp.blackhole=1 ?
Yes, that's what it was...
Got me thinking, though... Should the blackhole setting apply to localhost
(and local IP addresses) at all? It is a security measure -- would be nicer
to reduce its impact on legitimate activity...
-mi
_______________________________________________
freebsd-security@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@xxxxxxxxxxx"
- Prev by Date: Re: memory pages nulling when releasing
- Next by Date: Determining vulnerability to issues described by SAs
- Previous by thread: memory pages nulling when releasing
- Next by thread: Determining vulnerability to issues described by SAs
- Index(es):
Relevant Pages
|
|
