Hello to the list and RA guard evasion technique
Steinar H. Gunderson
sesse at google.com
Sun May 29 13:58:40 CEST 2011
Den 29. mai 2011 13:53 skrev Eric Vyncke (evyncke) <evyncke at cisco.com> følgende:
> But, you obviously have found a work-around around the work-around: overlapping fragments. Especially if hosts accept it... (which is weird BTW but what can we do?).
An open question is whether one should treat this as a bug in the end
systems. Shouldn't packets with overlapping fragments just be treated
as malformed and dropped? Or would checking for this have a
significant performance cost?
/* Steinar */
Software Engineer, Google Switzerland
More information about the ipv6-ops