| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 1998-10-28 | - fix three bugs pointed out in Stevens, i.a. updating timestamps correctly | Niels Provos | |
| - fix a 4.4bsd-lite2 bug, when tcp options are present the maximum segment size is not updated correctly, so that fast recovery forces out a segment which is split in two segments by tcp_output(), the fix is adpated from FreeBSD, the effective mss is recorded after option negotiation in 3way handshake. [I was able to fix this on time spent at Center for Information Technology Integration (citi.umich.edu)] | |||
| 1998-06-27 | indent | Theo de Raadt | |
| 1998-03-18 | Add FreeBSD patch (check for SYN packets arriving at a socket in | Angelos D. Keromytis | |
| LISTEN state with source address/port == destination address/port). | |||
| 1997-11-12 | correct RST validity checking; fc@parkone.ci.oakland.ca.us | Theo de Raadt | |
| 1997-11-12 | indent | Theo de Raadt | |
| 1997-08-26 | indent | Theo de Raadt | |
| 1997-08-16 | Just some more debugging info. | Angelos D. Keromytis | |
| 1997-08-09 | SYN flood protection, by specifying | Angelos D. Keromytis | |
| option TCPCOOKIE in the kernel config file. For very busy servers, consider raising the TCK_NFRIENDS value (it's currenly set to 16). Code originally from Matt Blaze and John Ioannidis. | |||
| 1997-07-06 | unsigned calc should be signed; jdp@polstra.com; freebsd pr#3998 | Theo de Raadt | |
| 1997-06-10 | ensure RST is within window; avalon@coombs.anu.edu.au | Theo de Raadt | |
| 1997-05-12 | argh | Theo de Raadt | |
| 1997-02-05 | use arc4random() | Theo de Raadt | |
| 1996-09-25 | Drop unused variable | Niklas Hallqvist | |
| 1996-09-20 | `solve' the syn bomb problem as well as currently known; add sysctl's for | Theo de Raadt | |
| SOMAXCONN (kern.somaxconn), SOMINCONN (kern.sominconn), and TCPTV_KEEP_INIT (net.inet.tcp.keepinittime). when this is not enough (ie. overfull), start doing tail drop, but slightly prefer the same port. | |||
| 1996-08-07 | Partial protection from TCP SYN attacks | Thorsten Lockert | |
| 1996-07-29 | Remove random() prototype, as it's not needed. Besides it was wrong for the ↵ | Niklas Hallqvist | |
| alpha :-) | |||
| 1996-07-29 | Make TCP ISS increment by random amounts | Thorsten Lockert | |
| 1996-03-03 | From NetBSD: 960217 merge | Niklas Hallqvist | |
| 1995-12-14 | from netbsd: | Theo de Raadt | |
| make netinet work on systems where pointers and longs are 64 bits (like the alpha). Biggest problem: IP headers were overlayed with structure which included pointers, and which therefore didn't overlay properly on 64-bit machines. Solution: instead of threading pointers through IP header overlays, add a "queue element" structure to do the threading, and point it at the ip headers. | |||
| 1995-10-18 | initial import of NetBSD tree | Theo de Raadt | |
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |