[19511] in bugtraq
Re: Loopback and multi-homed routing flaw in TCP/IP stack.
daemon@ATHENA.MIT.EDU (Dan Harkless)
Tue Mar 6 16:03:48 2001
Message-ID: <200103061926.LAA24100@dilvish.speed.net>
Date: Tue, 6 Mar 2001 11:26:09 -0800
Reply-To: Dan Harkless <dan-bugtraq@DILVISH.SPEED.NET>
From: Dan Harkless <dan-bugtraq@DILVISH.SPEED.NET>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: Message from Perry Harrington <pedward@WEBCOM.COM> of "Mon, 05
Mar 2001 18:43:05 PST." <20010305184305.C29340@webcom.com>
Perry Harrington <pedward@WEBCOM.COM> writes:
> I don't think the behavior should change because of DSR. DSR is more
> useful than 'rightness' in my opinion. A switch to turn it off if you
> don't want it is something I'd advocate, but the default should be 'on'.
Why? Using direct service return is the unusual case. People who're doing
load-balancing already need to do complex configuration -- what's so big
about also having to turn on a flag to use the Weak ES Model? If you can
make the average system more secure by making Strong ES the default, why not
do so?
----------------------------------------------------------------------
Dan Harkless | To prevent SPAM contamination, please
dan-bugtraq@dilvish.speed.net | do not mention this private email
SpeedGate Communications, Inc. | address in Usenet posts. Thank you.
