Daniel Ng wrote: > RFC 3128 described the way to attack IPv4 network > using tiny fragment. Can the same thing happen to > IPv6 network?
It would seem so, IPv6 fragment headers can also be forged to overlap each other. And I can't find anything in RFC 2460 to forbid this. The same cure as described in RFC 3128 would also apply. But filtering mechanisms must take in account the additional complication of the unfragmentable part i.e. hop-by-hop headers and such. Jari -------------------------------------------------------------------- IETF IPng Working Group Mailing List IPng Home Page: http://playground.sun.com/ipng FTP archive: ftp://playground.sun.com/pub/ipng Direct all administrative requests to [EMAIL PROTECTED] --------------------------------------------------------------------
