Re: Network Security hole (was -> Re: arp bug )

netdev

Re: Network Security hole (was -> Re: arp bug )

To:	erich@xxxxxxxx
Subject:	Re: Network Security hole (was -> Re: arp bug )
From:	Julian Anastasov <ja@xxxxxx>
Date:	Sun, 3 Mar 2002 03:33:25 +0000 (GMT)
Cc:	netdev@xxxxxxxxxxx
In-reply-to:	<E16hJki-0000rY-00@xxxxxxxxxxxxxxxxxxx>
Sender:	owner-netdev@xxxxxxxxxxx

On Sat, 2 Mar 2002 erich@xxxxxxxx wrote:

> That's not what I was talking about.  I'm talking about
> Destination Address Validation based on the network you're getting

        Forgot to mention, the rp_filter does not check only the
source IPs, it uses saddr, daddr and tos. So, you have full
validation, just use the more specific rules+routes.

Regards

--
Julian Anastasov <ja@xxxxxx>

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: Network Security hole (was -> Re: arp bug ), erich Re: Network Security hole (was -> Re: arp bug ), Russell King Re: Network Security hole (was -> Re: arp bug ), Julian Anastasov Re: Network Security hole (was -> Re: arp bug ), erich Re: Network Security hole (was -> Re: arp bug ), Julian Anastasov Re: Network Security hole (was -> Re: arp bug ), Julian Anastasov <=

Previous by Date:	Re: Network Security hole (was -> Re: arp bug ), Julian Anastasov
Next by Date:	Re: Network Security hole (was -> Re: arp bug ), erich
Previous by Thread:	Re: Network Security hole (was -> Re: arp bug ), Julian Anastasov
Next by Thread:	how do I get link layer addresses from user-space?, Fernando Anton
Indexes:	[Date] [Thread] [Top] [All Lists]