On Sat, Jan 11, 2003 at 06:00:17PM -0500, Ross Patterson wrote:
> On Saturday 11 January 2003 04:13 pm, Ignatios Souvatzis wrote:
> > But I would naively assume that a router operates a the IP level, and only
> > sees the IP payload. Hm... yes, I guess fast routers might just handle
> > the buffer around to the next interface out, only replacing MAC addresses,
> > hop count, and incrementally adjusting the IP checksum, in which case the
> > additional information won't be stopped.
> 
> Right, and that's why I'm not concerned - the problem's confined to the local 
> LAN.  If it could be exploited from off-LAN, that would be a very different 
> level of concern.

As pointed out elsewhere, it's probable that a layer-3 switch will
propagate such packets in their entirety.

--
Dan.