> ... and then do the same for the first TCP packet with payload? And you
That gets passed through by the firewall rule. > seriously would consider that "safer" or "less error prone", starting Yes the risk of adding exploitable holes to the kernel is signficantly lower. -Andi -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majord...@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/