IETF Logo Mail Archive

Re: [tcpm] WG Last Call for ICMP Attacks

Fernando Gont <fernando@gont.com.ar> Thu, 03 September 2009 17:31 UTC

Return-Path: <fernando@gont.com.ar>
X-Original-To: tcpm@core3.amsl.com
Delivered-To: tcpm@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 9172128C38E for <tcpm@core3.amsl.com>; Thu, 3 Sep 2009 10:31:03 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.217
X-Spam-Level:
X-Spam-Status: No, score=-3.217 tagged_above=-999 required=5 tests=[AWL=0.382, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id w82RmLbS8i5Q for <tcpm@core3.amsl.com>; Thu, 3 Sep 2009 10:31:02 -0700 (PDT)
Received: from smtp1.xmundo.net (smtp1.xmundo.net [201.216.232.80]) by core3.amsl.com (Postfix) with ESMTP id 4747D28C38B for <tcpm@ietf.org>; Thu, 3 Sep 2009 10:30:52 -0700 (PDT)
Received: from venus.xmundo.net (venus.xmundo.net [201.216.232.56]) by smtp1.xmundo.net (Postfix) with ESMTP id 6B4266B6617; Thu, 3 Sep 2009 14:00:17 -0300 (ART)
Received: from [192.168.0.136] (129-130-17-190.fibertel.com.ar [190.17.130.129]) (authenticated bits=0) by venus.xmundo.net (8.14.1/8.14.1) with ESMTP id n83Gxtp0004187; Thu, 3 Sep 2009 13:59:59 -0300
Message-ID: <4A9FF60C.7030200@gont.com.ar>
Date: Thu, 03 Sep 2009 13:59:56 -0300
From: Fernando Gont <fernando@gont.com.ar>
User-Agent: Thunderbird 2.0.0.23 (Windows/20090812)
MIME-Version: 1.0
To: toby.moncaster@bt.com
References: <F1534040-EA0D-44E4-98F7-67C24CD12CCF@windriver.com><B01905DA0C7CDC478F42870679DF0F1005B64E383D@qtdenexmbm24.AD.QINTRA.COM> <4A9F4AB1.6070605@gont.com.ar> <AEDCAF87EEC94F49BA92EBDD49854CC70CE19EA7@E03MVZ1-UKDY.domain1.systemhost.net>
In-Reply-To: <AEDCAF87EEC94F49BA92EBDD49854CC70CE19EA7@E03MVZ1-UKDY.domain1.systemhost.net>
X-Enigmail-Version: 0.95.7
OpenPGP: id=D076FFF1
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
X-Greylist: Sender succeeded SMTP AUTH authentication, not delayed by milter-greylist-3.0 (venus.xmundo.net [201.216.232.56]); Thu, 03 Sep 2009 14:00:09 -0300 (ART)
Cc: Donald.Smith@qwest.com, tcpm@ietf.org, david.borman@windriver.com
Subject: Re: [tcpm] WG Last Call for ICMP Attacks
X-BeenThere: tcpm@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: TCP Maintenance and Minor Extensions Working Group <tcpm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tcpm>
List-Post: <mailto:tcpm@ietf.org>
List-Help: <mailto:tcpm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tcpm>, <mailto:tcpm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 03 Sep 2009 17:31:03 -0000

toby.moncaster@bt.com wrote:

>>> Grammer and minor correction for elicited: Many TCP implementations
>>> have incorporated a validation check to make TCP react only to those
>>> ICMP error messages that appear to have been caused by segments that
>>> were "in-flight" to the destination system.
>> Does "elicited" sound bad? (english as a second language here, sorry)
>>
> 
> "elicited" implies that the packet specifically sought the ICMP packet
> to be sent (which I guess would indeed be the case in tcptraceroute)
> whereas the alternate wording is trying to make it clear that the ICMP
> packet wasn't the desired response in the first place. Not sure how
> clear my explanation actually is! 

Clear as water. :-) Thanks!



> Possible alternative wording: "Many TCP implementations have
> incorporated a validation check such that they only react to those ICMP
> messages that appear to relate to segments currently "in-flight" to the
> destination system."

Will incorporate this one. Thanks!

Kind regards,
-- 
Fernando Gont
e-mail: fernando@gont.com.ar || fgont@acm.org
PGP Fingerprint: 7809 84F5 322E 45C7 F1C9 3945 96EE A9EF D076 FFF1

v2.30.2 | Report a Bug | By Email | System Status