[PATCH] Disable IPv6 routing header type 0 processing by default

Matthew Dillon dillon at apollo.backplane.com
Wed Apr 25 10:52:18 PDT 2007


:Disable IPv6 routing header type 0 processing by default.
:
:In the light of http://www.secdev.org/conf/IPv6_RH_security-csw07.pdf
:introduce new sysctl net.inet6.ip6.rht0. Possible (sensible) values:
:
:-1: no IPv6 routing header type 0 processing (default)
: 0: IPv6 routing headers type 0 are processed only in router
: 1: IPv6 routing headers type 0 are processed always
:
:The idea obtained from NetBSD.

    Sounds great!

    Uhhh... what *IS* header type 0 processing?

						-Matt





More information about the Submit mailing list