lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-Id: <200810091921.04230.rdenis@simphalempin.com>
Date:	Thu, 9 Oct 2008 19:21:03 +0300
From:	Rémi Denis-Courmont <rdenis@...phalempin.com>
To:	Stephen Hemminger <shemminger@...tta.com>
Cc:	Willy Tarreau <w@....eu>, David Miller <davem@...emloft.net>,
	netdev@...r.kernel.org
Subject: Re: [PATCH] add a sysctl to disable TCP simultaneous connection opening

Le mercredi 8 octobre 2008 14:54:02 Stephen Hemminger, vous avez écrit :
> Does this break NAT traversal via STUNT used by applications like Skype?

This will break the main ICE-TCP mechanism (IETF draft-ietf-mmusic-ice-tcp).
I am not aware of any application using this _as_of_now_. Probably too many 
NAT and firewall implementations will reject it already. And then, some TCP 
stacks reportedly do not support it (e.g. Windows before Vista).

On the other hand, if someone were to tunnel/encapsulate TCP over UDP, this 
could actually be useful - think about peer-to-peer NATted-to-NATted file 
transfers for instance.

-- 
Rémi Denis-Courmont
http://www.remlab.net/
--
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ