[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: TOS copying considered harmful
> First, copying TOS is a security leak: it permits an eavesdropper to
Not more so than keeping the same packet size (rounded up to a multiple
of 8). To the extent that someone wants to rely on the TOS field, they
should be able to do so. ANyone running a tunnel paranoid enough to
be worried about potential TA based on the TOS field will also know enough
to pad packets and blot out the TOS field.
I say leave it alone.
/ji
--
/\ ASCII ribbon | John Ioannidis * Secure Systems Research Department
\/ campaign | AT&T Labs - Research * Florham Park, NJ 07932
/\ against | "Intellectuals trying to out-intellectual
/ \ HTML email. | other intellectuals" (Fritz the Cat)
Follow-Ups: