[Bug 1644] Allow ip options except source routing
bugzilla-daemon at bugzilla.mindrot.org
bugzilla-daemon at bugzilla.mindrot.org
Wed Sep 2 10:03:55 EST 2009
https://bugzilla.mindrot.org/show_bug.cgi?id=1644
--- Comment #4 from Darren Tucker <dtucker at zip.com.au> 2009-09-02 10:03:54 EST ---
(In reply to comment #3)
> Created an attachment (id=1693) [details]
[...]
> The patch is necessary for allowing connections over CIPSO labelled
> networking to sshd.
That's not true, it's far broader that that. It allows all options,
present and future (other than source route) regardless of the security
implications.
Also, I was curious about the origin of this patch, and it seems the
original author was Paul Moore at HP. Is this the case? Who are the
original authors of the rest of the patches recently submitted?
http://cvs.fedoraproject.org/viewvc/rpms/openssh/F-8/openssh-4.3p2-allow-ip-opts.patch?view=co
--
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
More information about the openssh-bugs
mailing list