tech-net: Re: Bugs in PF_KEY marshalling, socket-buffer overflow

Subject: Re: Bugs in PF_KEY marshalling, socket-buffer overflow
To: None <itojun@iijlab.net>
From: Michael Richardson <mcr@sandelman.ottawa.on.ca>
List: tech-net
Date: 05/21/2004 22:19:21

-----BEGIN PGP SIGNED MESSAGE-----


>>>>> "itojun" == itojun  <itojun@iijlab.net> writes:
    itojun> 	no.

    itojun> 	ask Craig Metz who designed PF_KEY.  you can reach him
    itojun> at cmetz at inner.net.

  It was a neat idea, but was a mistake.
  The idea is 10 years old, from before we even Photorus, and we thought
that we'd have a multitude of key managers hanging out.  The reality is
that we don't yet have one good key manager, let alone multiple ones. 
  
  Making it un-reliable or multicast was a mistaken.

  And, Craig Metz rarely answers emails these days.

- --
]     "Elmo went to the wrong fundraiser" - The Simpson         |  firewalls  [
]   Michael Richardson,    Xelerance Corporation, Ottawa, ON    |net architect[
] mcr@xelerance.com      http://www.sandelman.ottawa.on.ca/mcr/ |device driver[
] panic("Just another Debian GNU/Linux using, kernel hacking, security guy"); [

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Finger me for keys

iQCVAwUBQK64qIqHRg3pndX9AQGQYgQAoztDKfN4Jy4sT9g5aF7CSwjsA7He+vVK
te8ccMXxo9MO1lsAFxiZAkPIfYtj7HwG3y2gL4qYT7mGqVCPbbn/tkPrsag/Kw7h
mIBanlJ5/K1c8FEZtgz7B1KXfBlrKGfjE7G5ITEiWDJ9XPG7ApkHkRc48SQ5CikU
TA+LnoV605s=
=0ccJ
-----END PGP SIGNATURE-----