In article <87wu43x7hm.fsf@snark.piermont.com>,
Perry E. Metzger <perry@piermont.com> wrote:
>
>Jonathan Stone <jonathan@netbsd.org> writes:
>> NOTE: This version has two potential flaws. First, I do see any code
>> that verifies recieved TCP-MD5 signatures.
>
>That's not a "potential flaw" -- that makes it useless. :(
>
>Perry

No, it is still useful because some routers will not accept non-md5 sessions.
So to interoperate properly the minimum we have to do is send m5 packets and
accept m5 packets.

christos