Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Thu, 17 Jan 2013 18:43:26 +0530 (IST)
From: P J P <ppandit@...hat.com>
To: George Kargiotakis <kargig@...d.gr>
cc: oss-security@...ts.openwall.com
Subject: Re: Linux kernel handling of IPv6 temporary
 addresses

+-- On Thu, 17 Jan 2013, George Kargiotakis wrote --+
| Extensions as far as I know. On your RHEL it's '0' and that's why you 
| weren't seeing any 'ipv6_create_tempaddr' as previously mentioned on your 
| emails. If you change this value to '2' you'll also see those kernel 
| messages.

  Yep, worked! I manged to reproduce the log messages. So the patch earlier 
does seem to fix this issue, doesn't it? It avoids retry once reaching the 
max_addresses limit.

For the dynamic tentative settings of the interface, I think another patch 
would be required.

Thanks so much!
--
Prasad J Pandit / Red Hat Security Response Team
DB7A 84C5 D3F9 7CD1 B5EB  C939 D048 7860 3655 602B

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.