[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: 2.6 kernel patches

From: Simon Perreault <nomis80 nomis80 org>
To: fedora-devel-list redhat com
Subject: Re: 2.6 kernel patches
Date: Sun, 21 Dec 2003 21:53:24 -0500

Benny Amorsen wrote:

Please kill off CIPE for good. It is insecure. If you absolutely /must/
include a protocol with such limitations, at least pick OpenVPN. I say
that as a current user of CIPE who is in the process of switching.

It is also prone to a very easy DoS attack, which I reported to Red Hat a long time ago. This has not been fixed, which means I can DoS any CIPE server with only one packet. Alan Cox said he could not reproduce, but we have tested this with many versions of CIPE and of Red Hat Linux and it has not been fixed upstream either. See http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=66507 for more info.

--
Simon Perreault <nomis80 nomis80 org>
http://nomis80.org
"If voting could really change things, it would be illegal."
    --Excerpt from a Diebold Election Systems internal memo.

References:
- 2.6 kernel patches
  - From: Stan Bubrouski
- Re: 2.6 kernel patches
  - From: Dave Jones
- Re: 2.6 kernel patches
  - From: Steve Bergman
- Re: 2.6 kernel patches
  - From: Dave Jones
- Re: 2.6 kernel patches
  - From: Benny Amorsen

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]