Re: CVS commit: src/sys/netinet

To: "Steven M. Bellovin" <smb%research.att.com@localhost>
Subject: Re: CVS commit: src/sys/netinet
From: John Hawkinson <jhawk%MIT.EDU@localhost>
Date: Wed, 10 Sep 2003 21:51:48 -0400

Steven M. Bellovin <smb%research.att.com@localhost> wrote on Tue,  9 Sep 2003
at 07:40:55 -0400 in 
<20030909114055.1D4007B44%berkshire.research.att.com@localhost>:

> >Without wanting to advocate change for the sake of change, how much
> >sense does it make to go a step further and use a constant value in
> >the ID field (say 0?) for all "do not fragment" packets ?
> 
> It makes a lot of sense, though it gives away some fingerprinting info. 
> In fact, I believe that some Linux distributions already do just that.
> (At least one brand of router uses 0 for link-local OSPF packets, which 
> it knows can't be fragmented, and a counter for TCP.)

I'm curious if it really buys us very much. Having consistently
increasing ip IDs (and even different IP IDs) can be a valuable
debugging tool.

--jhawk

Follow-Ups:
- Re: CVS commit: src/sys/netinet
  - From: Steven M. Bellovin

References:
- Re: CVS commit: src/sys/netinet
  - From: Darren Reed
- Re: CVS commit: src/sys/netinet
  - From: Steven M. Bellovin

Prev by Date: CVS commit: src/sys/kern
Next by Date: re: PF_KEY socket buffer size issue
Previous by Thread: Re: CVS commit: src/sys/netinet
Next by Thread: Re: CVS commit: src/sys/netinet
Indexes:

Home | Main Index | Thread Index | Old Index