On Sun, 27 Feb 2000, Alan Cox wrote:
> > right. But the address that did the querying is not in the same subnet as
> > the address it was asking for. With BSDI For example, it will not respond
>
> ARP doesnt care. If someone asks for an address it will reply. They
> probably shouldnt have asked for the address but since they did they
> assume we are locally reachable and we oblige.
>
> I don't see any spec violation
It may not be a spec violation, but it's certainly an information
leak.
It'd be nice to be able to turn this off for multi-homed firewalls.
Matthew.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/
This archive was generated by hypermail 2b29 : Tue Feb 29 2000 - 21:00:17 EST