On Wed, 3 Mar 2004, Daniel Hartmeier wrote: > I think we'll wait and see what > strategies work best in the TCP/IP stack, and use that experience if/when > implementing TCP reassembly in pf scrub.
It would be a nice feature, TCP stream ambiguities are the last of the easily exploitable issues raised in the Ptacek and Newsham paper that scrub doesn't fix. -d
