Mike Silberack has posted a patch related to illegal TCP RST attacks.

Yesterday there were some commits related to this issue on ipfw. Also, Darren Reed (author of ipfilter) has pointed out how to mitigate this problem with ipfilter (ipfilter already have related bits there).

Mike’s patch is very straightforward. I have posted a copy on smth.org. Hopefully this will be committed soon and gave a chance to be included in 4.10-RELEASE.