===================================================================
RCS file: /cvsrepo/anoncvs/cvs/www/errata.html,v
retrieving revision 1.72
retrieving revision 1.73
diff -c -r1.72 -r1.73
*** www/errata.html 1998/02/19 10:42:30 1.72
--- www/errata.html 1998/02/19 10:43:53 1.73
***************
*** 25,34 ****
SECURITY FIX
If the sysctl variable net.inet.ip.forwarding is
enabled (value 1), but the variable net.inet.ip.sourceroute
! is disabled (value 0), the kernel will still accept source routing packets
itself. Our fix changes the net.inet.ip.sourceroute
! variable to mean that all block all source routed packets should be
! blocked completely.
A kernel patch is provided.
--- 25,35 ----
SECURITY FIX
If the sysctl variable net.inet.ip.forwarding is
enabled (value 1), but the variable net.inet.ip.sourceroute
! is disabled (value 0), the kernel will block source routed packets from
! going through, but will still accept source routing packets destined for
itself. Our fix changes the net.inet.ip.sourceroute
! variable semantics to mean that all block all source routed packets should
! be blocked completely.
A kernel patch is provided.
***************
*** 422,428 ****
www@openbsd.org
!
$OpenBSD: errata.html,v 1.72 1998/02/19 10:42:30 deraadt Exp $