On Tue, Jan 23, 2001 at 03:32:41PM -0800, Julian Elischer wrote:
> send a hand crafted arp packet out through the nergraph
> hook on the interface and let the response be put in the table.
This is a side-effect of the ARP packet processing mechanism
described in STD-0037. All inbound ARP packets are processed and
inserted into the kernel table, before checking if a response is
solicited or appropriate. The intention of the original designers
of ARP was to use this mechanism to minimize the need for broadcasts
on the network.
I bring this up to say this is only a valid assumption on the ARP
implementation in FreeBSD. I have not compared the STD-0037
recommendations with the implementation in NetBSD, and I am fairly
certain that Linux _DOES_NOT_ note arp-updates from unsolicited
packets. <sigh>
Sending spoofed ARP requests from the host in question will also
require root, which inspecting the kernel routing and arp table
currently doesn't.
- Steve
--
C. Stephen Gunn <[EMAIL PROTECTED]> | Waterspout Communications, Inc.
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-net" in the body of the message
