Greetings and Salutations:
From: Maxim Konovalov <[EMAIL PROTECTED]>
> Test
> cd /usr/src && patch -C -p0 < /path/to/ip_maxfragspersecond.patch
> and apply
> cd /usr/src && patch -p0 http://gandalf.home.digital.net/
Trace E-Mail forgery - http://gandalf.home.digital.net/spamfaq.html
Trolls crosspo
On Fri, 13 May 2005, 20:21+0400, Maxim Konovalov wrote:
> > I attempted to apply the patch, but I think the date on my in_pcb.c is
> > incorrect. What do I do to correct?:
> > # ls -al /usr/src/sys/netinet/in_pcb.c
> > -rw-r--r-- 1 root wheel 32712 Mar 28 06:29 /usr/src/sys/netinet/in_pcb.c
>
> I attempted to apply the patch, but I think the date on my in_pcb.c is
> incorrect. What do I do to correct?:
> # ls -al /usr/src/sys/netinet/in_pcb.c
> -rw-r--r-- 1 root wheel 32712 Mar 28 06:29 /usr/src/sys/netinet/in_pcb.c
> GandalfBSD# patch < ip_maxfragspersecond.patch
> Hmm... Looks l
On Fri, 13 May 2005 [EMAIL PROTECTED] wrote:
I attempted to apply the patch, but I think the date on my in_pcb.c is incorrect. What do I do to correct?:
I have revision 1.163 from 6-current.
Mike "Silby" Silbersack
___
freebsd-net@freebsd.org mailing lis
Greetings and Salutations:
From: Mike Silbersack <[EMAIL PROTECTED]>
> But on another laptop with the same processor, 8000 pps could effectively
> freeze it. We believe this is because the network card on that machine
> shares an IRQ with the sound card, making interrupt processing very
> expe
On Fri, 13 May 2005, Maxim Konovalov wrote:
[...]
So, test out my attached patch with varying settings of
maxfragspersecond and see if it makes any difference for you.
Am I right the above delta is a letfover from Suleiman's work and it's
not needed at all?
--
Maxim Konovalov
Correct, good catch!
M
[...]
> So, test out my attached patch with varying settings of
> maxfragspersecond and see if it makes any difference for you.
[...]
diff -u -r /usr/src/sys.old/netinet/ip_var.h /usr/src/sys/netinet/ip_var.h
--- /usr/src/sys.old/netinet/ip_var.h Sun Apr 17 18:05:06 2005
+++ /usr/src/sys/netinet
On Thu, 12 May 2005, Gandalf The White wrote:
# patch ip_reass-20050507.diff
Recompile kernel
I ran:
# top
I ran the test again and CPU utilization was at close to 98% to 99% in the
interrupt column.
Ken
Brooks Davis and myself ran some tests tonight while sitting around at
BSDCan and came to the
Greetings and Salutations:
On 5/8/05 9:13 PM, "Suleiman Souhlal" <[EMAIL PROTECTED]> wrote:
> The patch at http://people.freebsd.org/~ssouhlal/testing/
> ip_reass-20050507.diff does just this.
> Could you kindly test it?
My procedure (as root of course):
# cd \usr
# patch ip_reass-20050507.diff
R
On Sun, 8 May 2005, Suleiman Souhlal wrote:
The patch at http://people.freebsd.org/~ssouhlal/testing/
ip_reass-20050507.diff does just this.
Could you kindly test it?
Bye,
--
Suleiman Souhlal | [EMAIL PROTECTED]
Your patch looks like it would defeat newdawn4, but it's not general
enough to o
On Sun, 8 May 2005, Suleiman Souhlal wrote:
The patch at http://people.freebsd.org/~ssouhlal/testing/
ip_reass-20050507.diff does just this.
Could you kindly test it?
Bye,
--
Suleiman Souhlal | [EMAIL PROTECTED]
The concept sounds ok, as long as it doesn't change how fragment
reassembly work
Greetings and Salutations:
On 5/8/05 9:13 PM, "Suleiman Souhlal" <[EMAIL PROTECTED]> wrote:
> On May 7, 2005, at 10:17 AM, Gandalf The White wrote:
>> Take a look at the Linux implementation, they did a pretty good
>> job. It
>> consists of something like:
> The patch at http://people.freebsd.or
Hello,
On May 7, 2005, at 10:17 AM, Gandalf The White wrote:
Take a look at the Linux implementation, they did a pretty good
job. It
consists of something like:
0) Store the size of packet in a variable
1) Add up the number of bytes the fragments received and continue
to store /
accept fragmen
Greetings and Salutations:
On 5/6/05 6:56 PM, "Mike Silbersack" <[EMAIL PROTECTED]> wrote:
> I'll take a look at it while I'm at BSDCan next week. From your website's
> description of the attack, I don't see why FreeBSD would be affected so
> greatly... we must be wasting a lot of time traversing
I'll take a look at it while I'm at BSDCan next week. From your website's
description of the attack, I don't see why FreeBSD would be affected so
greatly... we must be wasting a lot of time traversing linked lists / etc.
Mike "Silby" Silbersack
On Mon, 2 May 2005 [EMAIL PROTECTED] wrote:
Greeti
Greetings and Salutations:
From: c0ldbyte <[EMAIL PROTECTED]>
> On Mon, 2 May 2005 [EMAIL PROTECTED] wrote:
>> I *just* got my FreeBSD setup stable and working with a KDE
>> GUI. :-). I know, easy for you guys but this is the first time I
>> have set up FreeBSD with automatic updates. I settled
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Mon, 2 May 2005 [EMAIL PROTECTED] wrote:
Greetings and Salutations:
I *just* got my FreeBSD setup stable and working witha KDE GUI. :-). I know,
easy for you guys but this is the first time I have set up FreeBSD with
automatic updates. I settled
Greetings and Salutations:
I *just* got my FreeBSD setup stable and working witha KDE GUI. :-). I know,
easy for you guys but this is the first time I have set up FreeBSD with
automatic updates. I settled on FreeBSD 5.4 after many tries.
I tried the Rose Attack / NewDawn against my laptop (i
18 matches
Mail list logo
