At 12:32 a.m. 09/07/2005, Christos Zoulas wrote:

>I ported the icmp patches from OpenBSD that fix the problems described in:
>
>         http://www.gont.com.ar/drafts/icmp-attacks-against-tcp.html
>
>Please let me know what you think.

I see he fixes are within ifdefs. What will be the default? i.e., the fixes 
will be "on" by default, or not?

I strongly recommend that the fix is on by default, unless you expect the 
users to read a 20-page internet-draft just to make an informed decision 
themselves.

Kindest regards,

--
Fernando Gont
e-mail: fernando@gont.com.ar || fgont@acm.org