d/freebsd-nq
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
21bac31e55
freebsd-nq/sys/i386
History
Warner Losh 173c0f9f5c Mitigate the stream.c attacks 
o Drop all broadcast and multicast source addresses in tcp_input.
o Enable ICMP_BANDLIM in GENERIC.
o Change default to 200/s from 100/s.  This will still stop the attack, but
  is conservative enough to do this close to code freeze.

This is not the optimal patch for the problem, but is likely the least
intrusive patch that can be made for this.

Obtained from: Don Lewis and Matt Dillon.
Reviewed by: freebsd-security
2000-01-28 06:13:09 +00:00
..
apm Remove code to select APM version with flags to the apm0 device. This 1999-12-02 03:13:11 +00:00
bios Correctly test CF. 2000-01-13 08:49:47 +00:00
boot Change #ifdef KERNEL to #ifdef _KERNEL in the public headers. "KERNEL" 1999-12-29 04:46:21 +00:00
conf Mitigate the stream.c attacks 2000-01-28 06:13:09 +00:00
i386 Correctly initialise the available IRQ numbers in the APIC_IO case. 2000-01-26 01:32:51 +00:00
ibcs2 Introduce NDFREE (and remove VOP_ABORTOP) 1999-12-15 23:02:35 +00:00
include Fixed the profiling version ALTENTRY(). Again. The previous version 2000-01-25 09:01:55 +00:00
isa The ppc driver has moved to sys/isa. 2000-01-25 22:26:44 +00:00
linux Update syscalls to Linux kernel 2.3.38. These syscalls are 2000-01-10 22:19:06 +00:00
pci Clean up the cfgmech/pci_mechanism debris. The reason for the existance 2000-01-08 08:31:24 +00:00
svr4 Pre-freeze cleanups: Conditionalize debugging writes on DEBUG_SVR4, 2000-01-15 15:29:37 +00:00
Makefile Add soft updates to the set of things being tagged. Syntax cleanup. 2000-01-27 01:22:06 +00:00