Examining ICMP Flaws

Posted by samzenpus on Wednesday July 6, 2005 @01:00PM from the under-the-microscope dept.

An anonymous reader writes "A recent internet-draft pointed out a number of security flaws in the design of the ICMP protocol. Most open source projects and vendors have addressed the flaws to some level, but this interesting article on KernelTrap examines the true extent of the problem, and how so far only OpenBSD has implemented all possible counter-measures. Theo de Raadt is quoted saying, "here we have a 20 year old protocol, a part of the Internet infrastructure that hasn't been touched in 10 years and we were all sure was right, and now is cast in doubt.""

1 of 238 comments (clear)

Min score:

Reason:

Sort:

Hasn't been touched in 10 years? by xxxJonBoyxxx · 2005-07-06 13:08 · Score: 0, Flamebait

"here we have a 20 year old protocol, a part of the Internet infrastructure that hasn't been touched in 10 years and we were all sure was right, and now is cast in doubt."

Where the hell has this moron been?

http://www.enterprisenetworkingplanet.com/netsecur /article.php/3498286
http://www.ciac.org/ciac/bulletins/h-78.shtml
http://bsd.slashdot.org/article.pl?sid=04/08/28/19 30259&tid=172&tid=7
etc., etc., etc...