On Sat, Jan 22, 2005 at 09:50:55PM -0500, Allen Briggs wrote:
[snip]
> What else?
> 
> Kurahone-san's patch seems pretty trivial, but I'm not sure how
> real the need is...

FWIW, CERT recomends disabling responding to broadcast ICMP packets when
dealing with smurf attacks, and it looks like a lot of the other unixes 
provide a simple tunable, or disable response by default.

http://www.cert.org/advisories/CA-1998-01.html

-- 
Kentaro A. Kurahone
SIGUSR1 Research and Development