Magnus Hagander wrote: > I think he's referring to the ability to flood the postgresql server > with radius packets with spoofed IP source, correct?
Yes. Or, with any number of other "bad" packets. > If we then looped > until we got one that validated as a proper packet, we'd still be able > to authenticate with that one, just throwing the invalid ones away. > Notice how the "read packet" part is moved inside the loop in his > suggestion. The patches from my previous message implements that. Alan DeKok. -- Sent via pgsql-bugs mailing list (pgsql-bugs@postgresql.org) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-bugs
