Subject: CVS commit: [netbsd-3-1] src
To: None <source-changes@NetBSD.org>
From: Geert Hendrickx <ghen@netbsd.org>
List: source-changes
Date: 04/26/2007 06:55:45
Module Name: src
Committed By: ghen
Date: Thu Apr 26 06:55:45 UTC 2007
Modified Files:
src/sbin/sysctl [netbsd-3-1]: sysctl.8
src/sys/netinet6 [netbsd-3-1]: ip6_input.c ip6_var.h route6.c
Log Message:
Pull up following revision(s) (requested by christos in ticket #1766):
sys/netinet6/ip6_input.c: revision 1.102 via patch
sys/netinet6/route6.c: revision 1.18 via patch
sys/netinet6/ip6_var.h: revision 1.41 via patch
sys/netinet6/ip6_var.h: revision 1.42 via patch
sbin/sysctl/sysctl.8: patch
Disable processing of routing header type 0 packets since they can be used
of DoS attacks. Provide a sysctl to re-enable them (net.inet6.ip6.rht0).
Information from:
http://www.secdev.org/conf/IPv6_RH_security-csw07.pdf
fix typo.
To generate a diff of this commit:
cvs rdiff -r1.118.2.4 -r1.118.2.4.4.1 src/sbin/sysctl/sysctl.8
cvs rdiff -r1.77.10.1 -r1.77.10.1.2.1 src/sys/netinet6/ip6_input.c
cvs rdiff -r1.33 -r1.33.22.1 src/sys/netinet6/ip6_var.h
cvs rdiff -r1.13 -r1.13.32.1 src/sys/netinet6/route6.c
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.