cvs commit: src/sys/netinet6 in6.h in6_proto.c route6.c
Kevin Oberman
oberman at es.net
Tue May 1 19:31:17 UTC 2007
> Date: Tue, 01 May 2007 15:26:20 +0100
> From: Rui Paulo <rpaulo at fnop.net>
> Sender: owner-cvs-all at freebsd.org
>
> At Tue, 1 May 2007 04:33:19 +0000,
> Darren Reed wrote:
> >
> > On Tue, Apr 24, 2007 at 11:42:42AM +0000, George V. Neville-Neil wrote:
> > > gnn 2007-04-24 11:42:42 UTC
> > >
> > > FreeBSD src repository
> > >
> > > Modified files: (Branch: RELENG_6)
> > > sys/netinet6 in6.h in6_proto.c route6.c
> > > Log:
> > > Add a new sysctl net.inet.ip6.rthdr0_allowed, which is default off,
> > > to disable the processing of Route Header Type 0 options in IPv6.
> > > This is not really an MFC because currently in HEAD the processing
> > > of these options is disabled unilateraly pending discussion at the IETF
> > > on the future of such headers.
> >
> > Given this direction came from the IETF, is there an internet draft
> > or RFC or BCP that discusses or summarises this?
>
> No, I don't think there is one yet.
While it may take a while to get out an RFC, you can read the reasons
for this change. It is the result of a presentation at CanSecWest on
April 18 by Biondi and Ebalard. The PDF is available at:
http://www.secdev.org/conf/IPv6_RH_security-csw07.pdf
--
R. Kevin Oberman, Network Engineer
Energy Sciences Network (ESnet)
Ernest O. Lawrence Berkeley National Laboratory (Berkeley Lab)
E-mail: oberman at es.net Phone: +1 510 486-8634
Key fingerprint:059B 2DDF 031C 9BA3 14A4 EADA 927D EBB3 987B 3751
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 224 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/cvs-src/attachments/20070501/e2f1facd/attachment.pgp
More information about the cvs-src
mailing list