Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Loopback and multi-homed routing flaw in TCP/IP stack.

From: Perry Harrington <pedward () WEBCOM COM>
Date: Mon, 5 Mar 2001 18:43:05 -0800
I don't think the behavior should change because of DSR.  DSR is more useful
than 'rightness' in my opinion.  A switch to turn it off if you don't want it is
something I'd advocate, but the default should be 'on'.

--Perry

On Mon, Mar 05, 2001 at 06:18:33PM -0800, ddowney () mail hislinuxbox net wrote:

On Mon, 5 Mar 2001, Perry Harrington wrote:


In short, yes security through obscurity is dumb, but calling for people to change
this functionality is unwarranted when machines can be firewalled.




Actually to me this sounds more like an excuse NOT to fix the problem
simply because it's "industry standard".

Sometimes standards need to be looked at and revamped. In this case it's
one that would affect the industry as a whole. Are you calling for
advisories only simply because the workload would be tremendous or because
you truly believe that fixing this would affect nothing?


---
David D.W. Downey - RHCE
Consulting Engineer
Ensim Corporation
david.downey () ensim com




--
Perry Harrington                 Director of                   zelur xuniL  ()
perry at webcom dot com      System Architecture               Think Blue.  /\

Attachment: _bin
Description:

Previous By Date Next
Previous By Thread Next

Current thread: