Re: FreeBSD Security Advisory FreeBSD-SA-07:03.ipv6
- From: Michael Nottebrock <lofi@xxxxxxxxxxx>
- Date: Mon, 30 Apr 2007 21:15:42 +0200
On Sunday, 29. April 2007, Eugene Grosbein wrote:
On Sat, Apr 28, 2007 at 05:34:33PM -0400, Peter Thoenen wrote:
Umm maybe its just but I fail to see why this is a security advisory
(initially caught this on the OBSD list). You are following the RFC ..
if you don't like "evil" packets, then drop them at the firewall or
router layer ... don't see the need for an OS fix.
Design flow in the RFC still may be security vulnerability, doesn't it?
The last "fix" for a IPv6 design flaw contributed by OpenBSD (disable
IPv4-mapped IPv6 addresses by default) caused rather unpleasant side-effects
in a number of applications. Will this change have similar effects? I've
gathered by now that in OpenBSD there is little concern for such things.
--
,_, | Michael Nottebrock | lofi@xxxxxxxxxxx
(/^ ^\) | FreeBSD - The Power to Serve | http://www.freebsd.org
\u/ | K Desktop Environment on FreeBSD | http://freebsd.kde.org
Attachment:
pgpGOWozZjQoF.pgp
Description: PGP signature
- Follow-Ups:
- Re: FreeBSD Security Advisory FreeBSD-SA-07:03.ipv6
- From: Kris Kennaway
- Re: FreeBSD Security Advisory FreeBSD-SA-07:03.ipv6
- Next by Date: Re: FreeBSD Security Advisory FreeBSD-SA-07:03.ipv6
- Next by thread: Re: FreeBSD Security Advisory FreeBSD-SA-07:03.ipv6
- Index(es):
Relevant Pages
|
|
