Re: ECN for servers ?

From: H. Peter Anvin (hpa@transmeta.com)
Date: Wed Feb 14 2001 - 16:00:51 EST

Next message: David Wood: "PROBLEM: virtual console corruption (2.4.1/p4/radeon/XFree86 4.0.2)"
Previous message: Alan Cox: "Re: IDE DMA Problems...system hangs"
In reply to: Jeff Garzik: "Re: ECN for servers ?"
Next in thread: Alan Cox: "Re: ECN for servers ?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Jeff Garzik wrote:
>
> On 14 Feb 2001, H. Peter Anvin wrote:
> > By author: Petru Paler <ppetru@ppetru.net>
> > > What is the impact of enabling ECN on the server side ? I mean, will
> > > any clients (with broken firewalls) be affected if a SMTP/HTTP server
> > > has ECN enabled ?
>
> > Pro: better behaviour in presence of network congestion.
> >
> > Con: people behind broken firewalls can't connect.
>
> Since you can use ICMP to tunnel data, a lot of security ppl are
> reluctant to stop filtering ICMP :/
>

You can use DNS to tunnel data, too. As far as ICMP is concerned,
perhaps they should consider sterilizing approaches instead.

-hp

-- 
<hpa@transmeta.com> at work, <hpa@zytor.com> in private!
"Unix gives you enough rope to shoot yourself in the foot."
http://www.zytor.com/~hpa/puzzle.txt
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Next message: David Wood: "PROBLEM: virtual console corruption (2.4.1/p4/radeon/XFree86 4.0.2)"
Previous message: Alan Cox: "Re: IDE DMA Problems...system hangs"
In reply to: Jeff Garzik: "Re: ECN for servers ?"
Next in thread: Alan Cox: "Re: ECN for servers ?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Thu Feb 15 2001 - 21:00:25 EST