lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-Id: <20081217.124841.169000877.davem@davemloft.net>
Date:	Wed, 17 Dec 2008 12:48:41 -0800 (PST)
From:	David Miller <davem@...emloft.net>
To:	katterjohn@...il.com
Cc:	netdev@...r.kernel.org
Subject: Re: [PATCH] IPv4 raw_hdrincl_nomangle sysctl

From: Kris Katterjohn <katterjohn@...il.com>
Date: Wed, 17 Dec 2008 14:44:58 -0600

> I've attached a patch to add a net.ipv4.raw_hdrincl_nomangle sysctl (defaults
> to 0) to control whether or not Linux changes the header passed using
> IP_HDRINCL (checksum, IPID, etc).  This way it's not required to build a
> special kernel simply to have control over what you send.  This was needed,
> for example, in this discussion[1] on Nmap's packet handling.

If you want full control, use AF_PACKET to send your frames.

Yes, this means you'll need to choose the outgoing device and compose
the link level header, but that's the price for control.

Using IPV4 RAW sockets implies you want some help from that
part of the stack, if you don't then simply use direct pure
packet sends via AF_PACKET.
--
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ