At 04:24 PM 20/04/2004, Crist J. Clark wrote: >Arguments on the severity of the bug aside, FreeBSD does not >have a working RFC2385 implementation. Most of it is there http://www.freebsd.org/cgi/cvsweb.cgi/src/sys/netipsec/ipsec.h has info about it. bms@freebsd.org is also working on completing the rest. I have been using his patches against quagga on a directly connected ebgp peer as well as an ebgp multi-hop peer as well for a good 2 months and it works as expected. ---Mike >And despite any particular >FreeBSD developer's opinion of the severity, there will be some >FreeBSD consumers who want RFC2385. Anyone working on it or >already have patches? >-- >Crist J. Clark | cjclark@alum.mit.edu > | cjclark@jhu.edu >http://people.freebsd.org/~cjc/ | cjc@freebsd.org >_______________________________________________ >freebsd-security@freebsd.org mailing list >http://lists.freebsd.org/mailman/listinfo/freebsd-security >To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org" _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"