Re: source routing honored by hosts?

netdev

Re: source routing honored by hosts?

To:	David Stevens <dlstevens@xxxxxxxxxx>
Subject:	Re: source routing honored by hosts?
From:	Andi Kleen <ak@xxxxxx>
Date:	Sat, 1 Sep 2001 12:22:29 +0200
Cc:	netdev@xxxxxxxxxxx
In-reply-to:	<OF4584EB28.376150E0-ON88256AB9.007DDA19@xxxxxxxxxxxxxxx>; from David Stevens on Sat, Sep 01, 2001 at 01:14:11AM +0200
References:	<OF4584EB28.376150E0-ON88256AB9.007DDA19@xxxxxxxxxxxxxxx>
Sender:	owner-netdev@xxxxxxxxxxx

On Sat, Sep 01, 2001 at 01:14:11AM +0200, David Stevens wrote:
> ip6_forward() has the following two lines:
> 
>      if (ipv6_devconf.forwarding == 0 && opt->srcrt == 0)
>           goto error;
> 
> Aside from the other issue of per-interface forwarding :-), this appears to 
> allow
> forwarding of source-routed packets even when the node is a host, only. That
> seems to be a security hole to me. Suppose you have a multihomed host, or

Yes. Looks like one.

> 
>      if (ipv6_devconf.forwarding == 0)
>           goto error;

Definitely.


-Andi

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: source routing honored by hosts?, Andi Kleen <= Re: source routing honored by hosts?, YOSHIFUJI Hideaki / 吉藤英明 Re: (usagi-users 00750) Re: source routing honored by hosts?, Pekka Savola Re: source routing honored by hosts?, Pekka Savola Re: (usagi-users 00767) Re: source routing honored by hosts?, YOSHIFUJI Hideaki / 吉藤英明 Re: (usagi-users 00767) Re: source routing honored by hosts?, Pekka Savola Re: source routing honored by hosts?, Andi Kleen Re: source routing honored by hosts?, David Stevens

Next by Date:	Re: source routing honored by hosts?, YOSHIFUJI Hideaki / 吉藤英明
Next by Thread:	Re: source routing honored by hosts?, YOSHIFUJI Hideaki / 吉藤英明
Indexes:	[Date] [Thread] [Top] [All Lists]