delphij's Chaos


24 Apr 2004

FreeBSD TCP Protocol Vulnerablity patched

Mike Silberack has posted a patch related to illegal TCP RST attacks.

Yesterday there were some commits related to this issue on ipfw. Also, Darren Reed (author of ipfilter) has pointed out how to mitigate this problem with ipfilter (ipfilter already have related bits there).

Mike’s patch is very straightforward. I have posted a copy on Hopefully this will be committed soon and gave a chance to be included in 4.10-RELEASE.