[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RFC1122 compilancy? [Fwd: Reliant Unix 5.43/5.44 ICMP port unreachable problem]

To: tech_(_at_)_openbsd_(_dot_)_org
Subject: RFC1122 compilancy? [Fwd: Reliant Unix 5.43/5.44 ICMP port unreachable problem]
From: "Denis A. Doroshenko" <d_(_dot_)_doroshenko_(_at_)_omnitel_(_dot_)_net>
Date: Mon, 9 Apr 2001 11:34:16 +0200

hello everyone,

when i sent the message below to one friend of mine, he said that it
should be valid for all BSD-derived TCP/IP stacks, and freebsd fixed
it only in 5.0 (31 Dec 2000, bug #23986 in category kern). sure i've
got interested whether it is applicable to OpenBSD. a little bit later
i found that this is right behaviour according RFC 1122:

------------------------------[RFC 1122]-------------------------------
3.2.2.1  Destination Unreachable: RFC-792

...

            A Destination Unreachable message that is received MUST be
            reported to the transport layer.  The transport layer SHOULD
            use the information appropriately; for example, see Sections
            4.1.3.3, 4.2.3.9, and 4.2.4 below.  A transport protocol
            that has its own mechanism for notifying the sender that a
            port is unreachable (e.g., TCP, which sends RST segments)
            MUST nevertheless accept an ICMP Port Unreachable for the
            same purpose.
------------------------------[EO RFC 1122]----------------------------

however, quick look through tcp*.c files in /usr/src/sys/netinet gives
nothing out to me. is OpenBSD RFC 1122 compilant, or its TCP code
reacts only to RST packets?

----- Forwarded message from Andrea Barisani <lcars_(_at_)_INFIS_(_dot_)_UNIV_(_dot_)_TRIESTE_(_dot_)_IT> -----
Date: Fri, 6 Apr 2001 17:28:03 +0200
From: Andrea Barisani <lcars_(_at_)_INFIS_(_dot_)_UNIV_(_dot_)_TRIESTE_(_dot_)_IT>
Subject: Reliant Unix 5.43 / 5.44 ICMP port unreachable problem
To: BUGTRAQ_(_at_)_securityfocus_(_dot_)_com

Hi to all,

I don't know if anyone might be interested in this (Reliant Unix is a sort
of archaeological OS) but sending an icmp port unreachable error to a RU
cause an immediate drop of all the connections in progress between the
server and the icmp-sender host, of course spoofing the icmp address
originator cause the drop of connections between an arbitrary host.
----- End forwarded message -----

-- 
Denis A. Doroshenko  [GPRS/IN/WAP, VAS group engineer] .-.        _|_  |
[Omnitel Ltd., T.Sevcenkos st. 25, Vilnius, Lithuania] | | _ _  _ .| _ |
[Phone: +370 9863486 E-mail: d_(_dot_)_doroshenko_(_at_)_omnitel_(_dot_)_net] |_|| | || |||(/_|_

Prev by Date: Re: adsl, internal pci modem and openbsd?
Next by Date: [no subject]
Previous by thread: Re: adsl, internal pci modem and openbsd?
Next by thread: [no subject]
Index(es):
- Date
- Thread

Visit your host, monkey.org