| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <20100408.035049.177640912.davem@davemloft.net> Date: Thu, 08 Apr 2010 03:50:49 -0700 (PDT) From: David Miller <davem@...emloft.net> To: netdev@...r.kernel.org CC: herbert@...dor.apana.org.au Subject: dhcp client packet sniffing... This is an old topic, but looking at traces tonight I was reminded about it. dhcp clients sniff every packet in the system, the reason it does this and the things we can do to make it not have to do so have been discussed before. Actually, I don't remember where we got with that and if we were able to make it such that the dhcp client doesn't have to do this any more. Herbert? But, in any event, the fact of the matter is that currently it still does on many machines. This means every packet in the machine gets sniffed. The DHCP client at least installs a socket filter that only accepts the packets that the DHCP client is actually interested in. The problem is that we clone the SKB and do some other operations before running the socket filter. I was thinking, what if we simply move the sk_filter() call up to dev_queue_xmit_nit()? And if sk_filter() rejects we don't even need to clone the packet. -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists