d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
812de2ed5c
freebsd-dev/share
History
Matthew N. Dodd 09139a4537 Implement support for RFC 3514 (The Security Flag in the IPv4 Header). 
(See: ftp://ftp.rfc-editor.org/in-notes/rfc3514.txt)

This fulfills the host requirements for userland support by
way of the setsockopt() IP_EVIL_INTENT message.

There are three sysctl tunables provided to govern system behavior.

	net.inet.ip.rfc3514:

		Enables support for rfc3514.  As this is an
		Informational RFC and support is not yet widespread
		this option is disabled by default.

	net.inet.ip.hear_no_evil

		 If set the host will discard all received evil packets.

	net.inet.ip.speak_no_evil

		If set the host will discard all transmitted evil packets.

The IP statistics counter 'ips_evil' (available via 'netstat') provides
information on the number of 'evil' packets recieved.

For reference, the '-E' option to 'ping' has been provided to demonstrate
and test the implementation.
2003-04-01 08:21:44 +00:00
..
colldef Add ca_ES locale 2002-12-30 09:09:58 +00:00
dict Say goodbye to freen' and freend'. 2003-01-24 20:51:03 +00:00
doc Correct typos, mostly s/ a / an / where appropriate. Some whitespace cleanup, 2003-01-01 18:49:04 +00:00
examples Add missing Danish (doc/da_*) language doc subdirectory 2003-03-26 01:25:39 +00:00
info Drop support for COPY, -c has been the default mode of install(1) 2002-07-29 09:40:17 +00:00
isdn FILES support for bsd.prog.mk. See bsd.README for details. 2001-12-17 13:59:35 +00:00
man Implement support for RFC 3514 (The Security Flag in the IPv4 Header). 2003-04-01 08:21:44 +00:00
me Fix typos (s/seperat/separat/ et al); add FreeBSD ID. 2002-08-12 10:04:32 +00:00
misc Added FreeBSD 5.0 2003-03-06 15:55:47 +00:00
mk Enable cpp(1) warnings in system headers. GCC is oriented on 2003-03-31 13:10:51 +00:00
mklocale Add ca_ES locale 2002-12-30 09:09:58 +00:00
monetdef Add ca_ES locale 2002-12-30 09:09:58 +00:00
msgdef Add ca_ES locale 2002-12-30 09:09:58 +00:00
numericdef Add ca_ES locale 2002-12-30 09:09:58 +00:00
security Hook up a sample LOMAC labeling policy. Unlike the old LOMAC module, 2002-12-03 15:16:10 +00:00
sendmail Drop support for COPY, -c has been the default mode of install(1) 2002-07-29 09:40:17 +00:00
skel Drop support for COPY, -c has been the default mode of install(1) 2002-07-29 09:40:17 +00:00
syscons New mapping for the italian keyboard, includes the Euro symbol 2003-03-01 14:45:17 +00:00
tabset FILES support for bsd.prog.mk. See bsd.README for details. 2001-12-17 13:59:35 +00:00
termcap Top Gun Telnet has been deprecated, and the home page recomends Top Gun SSH. 2003-01-09 19:52:01 +00:00
timedef Add ca_ES locale 2002-12-30 09:09:58 +00:00
zoneinfo Merge from vendor tzdata2002d. 2002-10-16 01:55:48 +00:00
Makefile Reenable building in share/mklocale for sparc64. It seems to work fine 2003-01-03 18:06:21 +00:00
Makefile.inc