funsec mailing list archives
Re: Evil bit now official?
From: "Tomas L. Byrnes" <tomb () byrneit net>
Date: Sun, 8 Feb 2009 22:01:33 -0800
Probably the same one that implements RFC 1216, reducing the processing power of their network nodes, to eliminate bandwidth saturation, in the interest of economics, of course ;-)
-----Original Message----- From: funsec-bounces () linuxbox org [mailto:funsec-bounces () linuxbox org] On Behalf Of Alex Eckelberry Sent: Sunday, February 08, 2009 2:58 PM To: rMslade () shaw ca; funsec () linuxbox org Subject: Re: [funsec] Evil bit now official? Which begs the question: What vendor? -----Original Message----- From: funsec-bounces () linuxbox org [mailto:funsec-bounces () linuxbox org] On Behalf Of Rob, grandpa of Ryan, Trevor, Devon & Hannah Sent: Sunday, February 08, 2009 3:37 PM To: funsec () linuxbox org Subject: [funsec] Evil bit now official? RFC 3514 (http://rfc.dotsrc.org/rfc/rfc3514.html and other places) is one of the "April Fools" RFCs. It takes one of the unused bits in the IPv4 header and suggests that it be used as an "evil" flag, so that we can know which packets to drop at firewalls. A few days ago I was looking at some vendor material and noticed that the "evil bit" was identified in the IP header ... ====================== (quote inserted randomly by Pegasus Mailer) rslade () vcn bc ca slade () victoria tc ca rslade () computercrime org Every old idea will be proposed again with a different name and a different presentation, regardless of whether it works. - RFC 1925 #11 http://victoria.tc.ca/techrev/rms.htm http://blog.isc2.org/isc2_blog/slade/index.html http://blogs.securiteam.com/index.php/archives/author/p1/ _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list. _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
_______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- Evil bit now official? Rob, grandpa of Ryan, Trevor, Devon & Hannah (Feb 08)
- Re: Evil bit now official? Alex Eckelberry (Feb 08)
- Re: Evil bit now official? Tomas L. Byrnes (Feb 08)
- Re: Evil bit now official? Jim Duncan (Feb 12)
- Re: Evil bit now official? Valdis . Kletnieks (Feb 09)
- Re: Evil bit now official? Alex Eckelberry (Feb 08)