source-changes: CVS commit: [netbsd-4] src

Subject: CVS commit: [netbsd-4] src
To: None <source-changes@NetBSD.org>
From: Manuel Bouyer <bouyer@netbsd.org>
List: source-changes
Date: 04/28/2007 18:30:14

Module Name:	src
Committed By:	bouyer
Date:		Sat Apr 28 18:30:14 UTC 2007

Modified Files:
	src/sbin/sysctl [netbsd-4]: sysctl.8
	src/sys/netinet6 [netbsd-4]: ip6_input.c ip6_var.h route6.c

Log Message:
Pull up following revision(s) (requested by christos in ticket #587):
	sys/netinet6/ip6_input.c: revision 1.102
	sys/netinet6/route6.c: revision 1.18
	sys/netinet6/ip6_var.h: revision 1.41
	sys/netinet6/ip6_var.h: revision 1.42
	sbin/sysctl/sysctl.8: patch
Disable processing of routing header type 0 packets since they can be used
of DoS attacks. Provide a sysctl to re-enable them (net.inet6.ip6.rht0).
Information from:
        http://www.secdev.org/conf/IPv6_RH_security-csw07.pdf
fix typo.


To generate a diff of this commit:
cvs rdiff -r1.156 -r1.156.2.1 src/sbin/sysctl/sysctl.8
cvs rdiff -r1.90 -r1.90.2.1 src/sys/netinet6/ip6_input.c
cvs rdiff -r1.37 -r1.37.12.1 src/sys/netinet6/ip6_var.h
cvs rdiff -r1.16 -r1.16.2.1 src/sys/netinet6/route6.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.