Re: Linux 2.2.16 through 2.2.18preX TCP hang bug triggered by rsync

From: Andi Kleen (ak@suse.de)
Date: Thu Jan 25 2001 - 06:40:36 EST


On Thu, Jan 25, 2001 at 03:32:44AM -0800, David S. Miller wrote:
>
> Andi Kleen writes:
> > It's mostly for security to make it more difficult to nuke connections
> > without knowing the sequence number.
> >
> > Remember RFC is from a very different internet with much less DoS attacks.
>
> Andi, one of the worst DoSs in the world is not being able to
> communicate with half of the systems out there.

If it was that serious then there would be surely more reports ;)

>
> BSD and Solaris both make these kinds of packets, therefore it is must
> to handle them properly. So we will fix Linux, there is no argument.

How do you propose to handle them? Queue the data anyways or just process
the ACK?

-Andi
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
Please read the FAQ at http://www.tux.org/lkml/



This archive was generated by hypermail 2b29 : Wed Jan 31 2001 - 21:00:21 EST