[PATCH] Disable IPv6 routing header type 0 processing by default
Matthew Dillon
dillon at apollo.backplane.com
Wed Apr 25 10:52:18 PDT 2007
:Disable IPv6 routing header type 0 processing by default.
:
:In the light of http://www.secdev.org/conf/IPv6_RH_security-csw07.pdf
:introduce new sysctl net.inet6.ip6.rht0. Possible (sensible) values:
:
:-1: no IPv6 routing header type 0 processing (default)
: 0: IPv6 routing headers type 0 are processed only in router
: 1: IPv6 routing headers type 0 are processed always
:
:The idea obtained from NetBSD.
Sounds great!
Uhhh... what *IS* header type 0 processing?
-Matt
More information about the Submit
mailing list