From owner-freebsd-net Sun Oct 18 01:12:13 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id BAA22041 for freebsd-net-outgoing; Sun, 18 Oct 1998 01:12:13 -0700 (PDT) (envelope-from owner-freebsd-net@FreeBSD.ORG) Received: from labinfo.iet.unipi.it (labinfo.iet.unipi.it [131.114.9.5]) by hub.freebsd.org (8.8.8/8.8.8) with SMTP id BAA22035 for ; Sun, 18 Oct 1998 01:12:10 -0700 (PDT) (envelope-from luigi@labinfo.iet.unipi.it) Received: from localhost (luigi@localhost) by labinfo.iet.unipi.it (8.6.5/8.6.5) id HAA03365; Sun, 18 Oct 1998 07:14:02 +0100 From: Luigi Rizzo Message-Id: <199810180614.HAA03365@labinfo.iet.unipi.it> Subject: (minor, possibly irrelevant) security problem ? To: net@FreeBSD.ORG Date: Sun, 18 Oct 1998 07:14:02 +0100 (MET) X-Mailer: ELM [version 2.4 PL23] Content-Type: text Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org probably not very important at all, but if i am not mistaken, looking at the "ed" sources, i noticed that for short (< 60 bytes) packets, the driver does not bother to fill the remaining part of the packet with 0's but instead just bumps up the length. This potentially sends out bytes from previous packets to a destination that is not the intended one. Is this something to worry about fixing (and possibly investigate other drivers if they do the same) ? I am not obsessed by security so i don't care too much... cheers luigi -----------------------------+-------------------------------------- Luigi Rizzo | Dip. di Ingegneria dell'Informazione email: luigi@iet.unipi.it | Universita' di Pisa tel: +39-50-568533 | via Diotisalvi 2, 56126 PISA (Italy) fax: +39-50-568522 | http://www.iet.unipi.it/~luigi/ _____________________________|______________________________________ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message