On Mon, Aug 27, 2001 at 04:54:31PM -0400, Mike Silbersack wrote:
>
> On Mon, 27 Aug 2001, Jesper Skriver wrote:
>
> > On Thu, Aug 23, 2001 at 06:23:31PM -0700, Scott Renfro wrote:
> > > You have a valid point that icmp_may_rst changes nmap's behavior, even
> > > with the proposed patch. If you want nmap's historic behavior (admin
> > > prohib ==> filtered), then turning off icmp_may_rst works. With
> > > icmp_may_rst turned on and the patch commited, you get the other
> > > behavior (admin prohib ==> closed). Without the patch, nmap spews
> > > errors and would need a FreeBSD-specific change.
> >
> > I pretty much doesn't care, Jonathan, Bill, Mike what do you think ?
> >
> > /Jesper
>
> Seems best to have icmp admin-prohibited return what a RST would, just to
> be compatible with the widest range of apps, IMHO.
Ack, committed to -current
/Jesper
--
Jesper Skriver, jesper(at)skriver(dot)dk - CCIE #5456
Work: Network manager @ AS3292 (Tele Danmark DataNetworks)
Private: FreeBSD committer @ AS2109 (A much smaller network ;-)
One Unix to rule them all, One Resolver to find them,
One IP to bring them all and in the zone to bind them.
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-net" in the body of the message
