You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
56 lines
3.7 KiB
56 lines
3.7 KiB
<html><head>
|
|
<meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
|
|
<meta name="viewport" content="width=device-width, initial-scale=1.0">
|
|
<title>'attention please: host's IP stack behavior got changed slightly' - MARC</title>
|
|
<link rel="stylesheet" type="text/css" href="'attention%20please%20host's%20IP%20stack%20behavior%20got%20changed%20slightly'%20-%20MARC_files/style.css">
|
|
</head>
|
|
|
|
<body data-new-gr-c-s-check-loaded="8.869.0" data-gr-ext-installed="" vlink="#800080" text="#000000" link="#0000C0" bgcolor="#ffffff">
|
|
<pre><b>[<a href="https://marc.info/?l=openbsd-tech&m=157580259613438&w=2">prev in list</a>] [<a href="https://marc.info/?l=openbsd-tech&m=157580941915332&w=2">next in list</a>] [<font color="#c0c0c0">prev in thread</font>] [<a href="https://marc.info/?l=openbsd-tech&m=157587822101285&w=2">next in thread</a>] </b>
|
|
<b><font size="+1">
|
|
List: <a href="https://marc.info/?l=openbsd-tech&r=1&w=2">openbsd-tech</a>
|
|
Subject: <a href="https://marc.info/?t=157580574500001&r=1&w=2">attention please: host's IP stack behavior got changed slightly</a>
|
|
From: <a href="https://marc.info/?a=140328195200005&r=1&w=2">Alexandr Nedvedicky <alexandr.nedvedicky () oracle ! com></a>
|
|
Date: <a href="https://marc.info/?l=openbsd-tech&r=1&w=2&b=201912">2019-12-08 11:42:13</a>
|
|
Message-ID: <a href="https://marc.info/?i=20191208114212.GI6859%20()%20tbd">20191208114212.GI6859 () tbd</a></font>
|
|
[Download RAW <a href="https://marc.info/?l=openbsd-tech&m=157580561114203&q=mbox">message</a> or <a href="https://marc.info/?l=openbsd-tech&m=157580561114203&q=raw">body</a>]</b>
|
|
|
|
Hello,
|
|
|
|
commit from today <a name="-1"></a><a href="#1">[1]</a> makes IP stack more paranoid. Up to now OpenBSD
|
|
implemented so called 'weak host model' <a name="-2"></a><a href="#2">[2]</a>. The today's commit alters
|
|
that for hosts, which don't forward packets (don't act as routers).
|
|
|
|
Your laptops, desktops and servers now check packet destination address
|
|
with IP address bound to interface, where such packet is received on.
|
|
If there will be mismatch the packet will be discarded and 'wrongif'
|
|
counter will be bumped. You can use 'netstat -s|grep wrongif' to
|
|
display the counter value.
|
|
|
|
It is understood the behavior, which has been settled in IP stack since 80's,
|
|
got changed. tech@openbsd.org (or bugs@openbsd.org) wants to hear back from you,
|
|
if this change breaks your existing set up. There is a common believe this
|
|
change won't hurt majority (> 97%) users, though there is some non-zero risk,
|
|
hence this announcement is being sent.
|
|
|
|
thanks and
|
|
regards
|
|
sashan
|
|
|
|
<a name="1"></a><a href="#-1">[1]</a> <a href="https://marc.info/?l=openbsd-cvs&m=157580332113635&w=2" rel="nofollow">https://marc.info/?l=openbsd-cvs&m=157580332113635&w=2</a>
|
|
|
|
<a name="2"></a><a href="#-2">[2]</a> <a href="https://en.wikipedia.org/wiki/Host_model" rel="nofollow">https://en.wikipedia.org/wiki/Host_model</a>
|
|
|
|
<b>[<a href="https://marc.info/?l=openbsd-tech&m=157580259613438&w=2">prev in list</a>] [<a href="https://marc.info/?l=openbsd-tech&m=157580941915332&w=2">next in list</a>] [<font color="#c0c0c0">prev in thread</font>] [<a href="https://marc.info/?l=openbsd-tech&m=157587822101285&w=2">next in thread</a>] </b>
|
|
</pre>
|
|
<br><center>
|
|
<a href="https://marc.info/?q=configure">Configure</a> |
|
|
|
|
<a href="https://marc.info/?q=about">About</a> |
|
|
<a href="https://marc.info/?q=news">News</a> |
|
|
<a href="mailto:webguy@marc.info?subject=Add%20a%20list%20to%20MARC">Add a list</a> |
|
|
Sponsored by <a href="http://www.korelogic.com/">KoreLogic</a>
|
|
</center>
|
|
|
|
|
|
</body></html>
|