From owner-freebsd-security@FreeBSD.ORG  Mon Apr 26 02:13:46 2004
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 5A24D16A4CE
	for <freebsd-security@freebsd.org>;
	Mon, 26 Apr 2004 02:13:46 -0700 (PDT)
Received: from mail008.syd.optusnet.com.au (mail008.syd.optusnet.com.au
	[211.29.132.212])
	by mx1.FreeBSD.org (Postfix) with ESMTP id F0C7C43D1D
	for <freebsd-security@freebsd.org>;
	Mon, 26 Apr 2004 02:13:44 -0700 (PDT)
	(envelope-from peterjeremy@optushome.com.au)
Received: from server.vk2pj.dyndns.org
	(c211-30-75-229.belrs2.nsw.optusnet.com.au [211.30.75.229])
	i3Q9DWS15944;	Mon, 26 Apr 2004 19:13:32 +1000
Received: from server.vk2pj.dyndns.org (localhost.vk2pj.dyndns.org
	[127.0.0.1])i3Q9DWRu097442;	Mon, 26 Apr 2004 19:13:32 +1000 (EST)
	(envelope-from peter@server.vk2pj.dyndns.org)
Received: (from peter@localhost)
	by server.vk2pj.dyndns.org (8.12.10/8.12.10/Submit) id i3Q9DW2L097441;
	Mon, 26 Apr 2004 19:13:32 +1000 (EST)
	(envelope-from peter)
Date: Mon, 26 Apr 2004 19:13:32 +1000
From: Peter Jeremy <peterjeremy@optushome.com.au>
To: Mipam <mipam@ibb.net>
Message-ID: <20040426091332.GA97422@server.vk2pj.dyndns.org>
References: <20040423144422.GD961@straylight.m.ringlet.net>
	<Pine.LNX.4.33.0404260910090.13131-100000@ux1.ibb.net>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <Pine.LNX.4.33.0404260910090.13131-100000@ux1.ibb.net>
User-Agent: Mutt/1.4.2.1i
cc: freebsd-security@freebsd.org
Subject: Re: use keep state(strict) to mitigate tcp issues?
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Security issues [members-only posting]
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 26 Apr 2004 09:13:46 -0000

On Mon, Apr 26, 2004 at 09:18:05AM +0200, Mipam wrote:
>I have no statistics and didnt check it out more closely, but in practise,
>let's say just daily life, in how many connecties would packets be
>arriving out of order?

My ISP speed-limits my connection if I exceed my monthly data volume.
I'm not sure how they do the speed limiting but it seems to fairly
consistently result in the last data packet arriving after the FIN
packet.  I don't have statistics for when my connection is running
normally.

Peter